How do you enable SAML Authentication for, within GSuite?

Here’s a walk-through of setting up Google G suite as your SAML Identity Provider for

Step 1:

  • Go to your Google G-suite admin page.

Step 2:

  • Choose “SAML apps”.

Google Admin, Apps

Step 3:

  • Click on the “Plus” icon lower-right to add a new SAML app.

Add new SLAM apps

Step 4:

  • Choose “Setup my own custom app” at the bottom of the list.

Step 1, Enable SSO for SLAM application, Setup my own custom app

Step 5:

Choose “Option 2” and download your IDP metadata. At this point, pause your setup and send the file to

Once you send the file, will generate the following:

  • Entity ID
  • Start URL

This may take upto 24 hours.

Step 2, Google IdP Information,, OKR software

Step 6:

  • You can define “Profit OKRs” as the Application Name. Grab the logo from here and upload it to Google.

Step 3, Basic information of your custom app

step 7:

  • Update the service provider details as shown in the table.
Fields Values
ACS URL It will be provided by team
Entity ID urn:profit-prod:profit-prod-sso-auth
Start URL<accountNumber>&lType=ad&tt=sa&productCode=profit
Name ID Basic Information / Primary Email
Name ID Format ENTITY

Step 4, Service provider details

Step 8:

  • We need to add one attribute mapping in step 5.

Step 5, Attribute Mapping

Step 9:

Define the attribute mapping as follows:

  • Type “E-Mail Address” in the first field
  • Select “Basic Information” in the second field
  • Select “Primary Email” in the third field

Step 5, Attribute Mapping, E-Mail Address, Basic Information, Primary Email

Step 10:

  • Switch your new SAML App “ON for everyone”.

Google Admin, Apps, SLAM Apps, ON for everyone

G suite Marketplace