How to set up Single Sign-On with Google

This article outlines the steps required to set up Single Sign-On [SSO] with Google authentication.  Users can then use Google authentication to access the Spoke Phone mobile app, desktop app and account portal.

You will need to have an account with admin access to Google to complete this configuration.

Contents

Create and configure a Google App for Spoke Phone

Enable the Spoke Phone Google App for your users

Complete your Spoke Phone SSO configuration

User Provisioning

 

NOTE: If you haven't already, you will need to verify your company domain in Google.  See the following article for help: https://support.google.com/a/answer/60216?hl=en

Create and configure a Google App for Spoke Phone

  1. Navigate to Apps > Web and mobile apps and click Add App > Add Custom SAML App
    Enter an App name, e.g.  
    Spoke Phone

    Upload an App Icon

    Click CONTINUE

    2021-08-13_15_51_15-SSO.png

  2. Click DOWNLOAD METADATA and save the XML file locally

    2021-08-13_15_51_47-SSO.png

    Click CONTINUE 

  3. In the Service Provider Details page enter:
    ACS URL =  
    https://sso.dev.spokelabs.net/saml2/idpresponse

    Entity ID
    urn:amazon:cognito:sp:us-east-1_QElIJGlYT


    Name ID Format
    = Select EMAIL

    Name ID = Select Basic Information > Primary email

    2021-08-13_16_08_07-SSO.png

    Click CONTINUE

  4. Complete the Attribute Mapping as follows:
    Basic Information > First name =  
    firstname

    Basic Information > First name =  
    lastname

    Basic Information > Primary Email =  
    email

    2021-08-13_16_08_19-SSO.png

    Click FINISH



Enable the Spoke Phone Google App for your users

Go to the Google help article to enable the Spoke Phone App for the users you choose:
https://support.google.com/a/answer/6087519?hl=en

 

Complete your Spoke Phone SSO configuration

  1. Go to your Spoke Phone account portal online and login

  2. Navigate to Other > Advanced and select the SINGLE SIGN-ON tab at the top of the Advanced page

  3. Enter in a Company Name and select Check availability

  4. Select Upload and choose the file (e.g.) GoogleIDPMetadata.xml you saved earlier

  5. Complete the SAML Response Mapping in the Spoke Phone Account Portal as follows:
    Email =  
    email

    First Name =  
    firstname

    Last Name =  
    lastname

User Provisioning

Currently, Spoke Phone SSO does not auto-provision users.  You will need to ensure you have created the users in the Spoke Phone Account portal with the matching email addresses in your Identity Provider.

TIP: You can download a list of users to a csv file and manipulate that file to upload users directly into the Spoke Account portal. 

 

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.