Configuring SSO for Google

The Clumio service can integrate with Google for seamless user authentication. Follow the steps below to configure Google IDP as a Single Sign On service for Clumio.

Prerequisites

Ensure that you have the following before you start configuring Google as an IDP:

  • Google account with admin privileges
  • Clumio account with Super Admin Role

Enable Google integration with Clumio

In Google

  1. Open Google Admin Console > Apps > Web and Mobile Apps.
  2. Add custom SAML App.
  1. Enter the App Name and click Continue.
  1. Download Metadata and click Continue.
  1. You should see the following screen:
  1. From step 4 in the Clumio setup below, copy the Audience URI to Entity ID and the ACS URL to ACS URL.
  2. Make sure the Signed Response check box is selected.
  1. Click Continue with all the other default settings.
  2. Turn on the app for appropriate users or organizational units.
  1. Click Save and return to the app.
  2. On the SAML Attribute Mapping screen, make sure that the primary email maps to: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
  1. Proceed to complete the setup in Clumio.

In Clumio

  1. Log on to Clumio.
  2. Navigate to Settings > Access Management > Authentication (SSO/MFA)
  3. Click Configure SSO under Strategy.
  4. Copy the Audience Restriction, Assertion Customer Service (ACS) URL, and the Sign-On URL. This information is needed for step 6 on the IdP side setup. 
  5. Scroll down and upload the metadata retrieved from the IdP. You can use the URL, upload the metadata XML file, or configure it manually. 
  6. Click Save Configuration and then click Test with my Account. This should open a new tab to test the SSO connection.
  7. Once the connection test is successful, click Activate SSO.
    This step is important for SSO enablement.
  8. Optionally, enable the check box to send emails to notify all users of the SSO enablement, or else click Enable.

Note: For any user to utilize Clumio login through Google SSO, the user needs to be explicitly added from the Clumio UI; Settings > Access management > Users.




Contact [email protected] with any questions or concerns.