You can use Google as an identity provider (IdP) to implement SAML-based
single sign-on (SSO) for user authentication and to automate user synchronization
between
your Google Workspace and TMWS.
This section describes how to configure Google as a SAML (2.0) identity
provider to work with TMWS.
When there are multiple domains, they have the same authentication method,
that is, Direct, AD FS, Agent, Okta, Azure AD, or Google. Each domain shares the same
settings under the Google authentication method.
NoteIn this authentication method, hosted users are not able to access websites
through TMWS. If you need to
manage hosted user accounts, add them in your Google directory first.
|
Before you begin configuring Google authentication, make sure that:
-
You have a valid subscription with a Google Workspace edition that supports Single Sign On (SSO) using Google as IdP.
-
You are logged on to the management console as an TMWS administrator.
-
You have a Google Workspace super administrator account.
Procedure
- Add TMWS as a SAML application in Google.
- Configure synchronization settings in Google.
- Configure Google settings on TMWS.
- Add Google Workspace domains and synchronize Google Workspace users and groups on TMWS.
- Test single sign-on to TMWS.