You can connect your Zaius account to Google Apps by providing the Google Client ID and Client Secret to Zaius.

Requirements: 

  • When Google SSO is enforced, all users must login with Google. 
  • All users must have a domain that matches the domain configured (or one of the domain aliases of the primary domain). For example if your domain is configured as acme.com, all users must login with an acme.com email. 
  • The email in Zaius must be the primary email within Google, not an email alias.

Note about Enforcement:
If SSO is setup, but not enforced, users can login with either SSO or Zaius credentials. If users were added during the enforcement period they will have to request a password reset email on the login page.

Enable the Admin SDK Service

  1. Navigate to the Library page of the API Manager.
  2. Select Admin SDK from the list of APIs:

3. On the Admin SDK page, click Enable.

Generate the Google Client ID and Client Secret

  1. While logged in to your Google account, go to the API Manager.
  2. Create your new app by navigating to Credentials using the left-hand menu:
  1. While you are on the Credentials page, click on Create a project.
  2. In the dialog box that appears, provide a Project name, answer Google's email- and privacy-related questions, and click Create:
  1. Google will take a moment to create your project. When the process completes, Google will prompt you to create the credentials you need.
  1. Click on Create credentials to display a pop-up menu listing the types of credentials you can create. Select the OAuth client ID option.
  2. At this point, Google will display a warning banner that says, "To create an OAuth client ID, you must first set a product name on the consent screen." Click Configure consent screen to begin this process.
  1. Provide a Product Name that will be shown to users when they log in through Google.
  1. Click Save.

Google may show an "unverified app" screen before displaying the consent screen for your app. To remove the unverified app screen, complete the OAuth Developer Verification process.

  1. At this point, you will be prompted to provide additional information about your newly-created app.
  1. Select Web application, and provide a name for your app.
  2. Under Restrictions, enter the following information:

Authorized JavaScript origins: https://sso.zaius.com
Authorized redirect URI: https://sso.zaius.com/login/callback

  1. Click Create. Your Client Id and Client Secret will be displayed:

Along with your domain and any domain aliases, enter your Client Id and Client Secret within Zaius:

Note: If SSO is setup, but not enforced, users can login with either SSO or Zaius credentials. If users were added during the enforcement period they will have to request a password reset email on the login page.

Login with SSO!

When on the sign-in page, click the "Sign in with SSO" button to login.

Did this answer your question?