Google Authentication

You can use Google as an identity provider (IdP) to implement SAML-based single sign-on (SSO) for user authentication and to automate user synchronization between your Google Workspace and TMWS.

This section describes how to configure Google as a SAML (2.0) identity provider to work with TMWS.

When there are multiple domains, they have the same authentication method, that is, Direct, AD FS, Agent, Okta, Azure AD, or Google. Each domain shares the same settings under the Google authentication method.


In this authentication method, hosted users are not able to access websites through TMWS. If you need to manage hosted user accounts, add them in your Google directory first.

Before you begin configuring Google authentication, make sure that:

  • You have a valid subscription with a Google Workspace edition that supports Single Sign On (SSO) using Google as IdP.

  • You are logged on to the management console as an TMWS administrator.

  • You have a Google Workspace super administrator account.

  1. Add TMWS as a SAML application in Google.
  2. Configure synchronization settings in Google.
  3. Configure Google settings on TMWS.
  4. Add Google Workspace domains and synchronize Google Workspace users and groups on TMWS.
  5. Test single sign-on to TMWS.