Configuring SSO for Google

The Clumio service can integrate with Google for seamless user authentication. Follow the steps below to configure Google IDP as a Single Sign On service for Clumio.

Prerequisites

Ensure that you have the following before you start configuring Google as an IDP:

  • Google account with admin privileges
  • Clumio account with Super Admin Role

Enable Google integration with Clumio

In Google

  1. Open Google Admin Console > Apps > Web and Mobile Apps.
  2. Add custom SAML App.
  3. Enter the App Name and hit continue.
  4. Download Metadata and hit continue.
  5. You should see this screen.
  6. Go to the Clumio side setup and get information from Step 4.
  7. Copy the Audience URI to Entity ID and the ACS URL to ACS URL.
  8. Make sure "Signed Response" is checked.
  9. Click on Continue and leave everything else default.
  10. Turn the app for appropriate users or organizational units.
  11. Hit Save and return back to the app.
  12. Within SAML Attribute Mapping, make sure that the Primary email maps to: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
  13. Finish setup in Clumio before proceeding.

In Clumio

  1. Log in to Clumio.
  2. Navigate to Settings > Access Management > Authentication (SSO/MFA)
  3. Click Configure SSO under Strategy.
  4. Copy the Audience Restriction, Assertion Customer Service (ACS) URL, and the Sign-On URL. This will be needed for the IdP side setup. 
  5. Scroll down and upload the metadata retrieved from the IdP. You can either use the URL, upload the metadata XML file, or configure it manually. 
  6. Now click on Save Configuration.
  7. Click Test with my Account - This should open a new tab to test the SSO connection.
  8. Once the above step is successful, click on Activate SSO. Please note that this step is important for SSO enablement.
  9. Check the box to send emails if you wish to notify all users of the SSO enablement, or else click Enable.

Note: For any user to utilize Clumio login through Google SSO, the user needs to be explicitly added from the Clumio UI; Settings > Access management > Users.