Configuring SSO for Google Workspace in Okta

Authors
  • avatar
    Name
    Michael Bui
    Twitter

Overview

In a previous lab, we integrated Google Workspace with Okta. We chose to use SAML for SSO so that users wouldn't need to have passwords for Google Workspace.

In this lab, we'll be configuring SSO so that users can sign into their google accounts from Okta.

Instructions

  1. In the Google admin portal - go to Security -> Authentication -> SSO with third party IdP
  2. Click Add SSO Profile
  3. To get the Sign-in page URL you can go to the Google Workspace Integration and click Sign On -> View SAML setup instructions

Verifying

Going straight to Google (Service-Provider Initiated)

  • Upon going to gmail.com and entering credentials for the builab domain user - I am taken to an Okta sign in to access Gmail
  • Once I log in I am in my Gmail

Going from Okta Portal (IdP Initiated)

  • I will log into the Okta portal at okta.builab.ca using the Sam L user
  • We're greeted with the available apps on the users dashboard
  • Clicking on any of these logs us in to the Google app
  • Here, I click on Google Workspace Account