How do I set up a custom SAML application using Google SSO

Note:  

  • This document references views and actions that are only available to Echo Administrators
  • Ensure the username in Echo and the username for authentication into your SSO match. If not you may get an error, "You do not have a valid Buzz account".

Set up your own custom SAML app for Echo

  1. Sign in to your Google Admin console (admin.google.com)
  2. From the Admin console Home page, go to Apps > SAML Apps.
  3. Select the Add a service/App to your domain link or click the plus (+) icon in the bottom corner.
  1. Click Setup my own custom SAML App.
  2. The Google IDP Information window opens and the Single Sign-On URL and the Entity ID URL fields automatically populate.
  1. Download the IDP metadata, (you will need to rename it to idp-meta.xml before upload it into Echo's Integration under Edit Settings from the Domain Detail page).  
  2. Click Next.
  1. In the Basic Application Information window, add an application name (e.g., Echo) and description.
  2. (Optional) Click Choose file next to the Upload Logo field to upload a PNG or GIF file to serve as an icon. The file size should be 256 pixels square.
  3. Click Next

In the Service Provider Details window, add an ACS URL, Entity ID, and Start URL. The ACS URL, the Entity ID, and the Start URL information should be entered as follows:

NOTE: replace USERSPACE with your schools Userspace/URL

Leave Signed Response unchecked.

Click Next and Finish

After you have click Finished this is your SAML Set up page:

 

Turn on SSO to your new SAML app

  1. Sign in to your Google Admin console (admin.google.com)
  2. From the Admin console Home page, go to Apps > SAML Apps.
  3. Click your new SAML app.

At the top right of the gray box, click Edit Service.

  1. At the left the top-level organization and any organizational units appear. Ensure that your user account email IDs match those in the domain for your Google service.
  2. Select ON for everyone to enable SSO for the listed organizations.
  3. Click Save

Configure Echo to use the new Google SSO

  1. Go to the Admin app in Echo for the USERSPACE you configured in Google
  2. From Domain Details select Domain Settings from the vertical menu.
  3. On the Authentication card, select SAML as your authentication Type
  4. Locate the previously downloaded IPD metadata file.
  5. Rename the file to idp-meta.xml.
  6. Click the upload icon for the idp-meta.xml field.

After upload select Open in new Window: If you do not, Google will not load in the iFrame window.

Save.

Verify SSO between your Google service and Echo

  1. Go to your Echo login page.
  2. Click Login to launch the Google SSO.
  1. Enter your G Suite credentials.
  2. After your G Suite credentials are authenticated you will be automatically redirected back to your Echo home page.

Echo is constantly being improved based on the feedback from users and we strive to keep our documentation up to date.  If this document doesn’t match what you are seeing in Echo, please let us know.

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.