Google Workspace SSO Setup
Please follow the steps below to configure SAML for Security Journey.
Sign in to your Google Admin console.
Sign in using an account with super administrator privileges.
In the Admin console, go to Menu > Apps > Web and mobile apps.
Click Add App > Add custom SAML app.
Enter the app name (Security Journey) and, optionally, upload an icon for your app. The app icon appears on the Web and mobile apps list, on the app settings page, and in the app launcher. If you don't upload an icon, an icon is created using the first two letters of the app name.Click Continue.
On the Google Identity Provider details page, get the setup information needed by the service provider using one of these options:
Download the IDP metadata.
Copy the SSO URL
Click Continue.
In the Service Provider Details window, enter:
Entity ID— urn:amazon:cognito:sp:us-east-1_CHi5tsM8X
Start URL—(Optional) https://my.securityjourney.com/?domain=yourdomain.com [*You will need to add your company domain to the end of the Start URL]
Set Name ID format and Name ID value for your custom SAML app. The default Name ID is the primary email.
Click Continue.
If needed, click Add mapping to map user attributes based on the service provider’s requirements. Security Journey only requires Name ID but additional attributes can be added to enrich your learner's profile, Platform reports or to create targeted training assignments. To learn more, check out Learner Attributes
(Optional) To enter group names that are relevant for this app:
For Group membership (optional), click Search for a group, enter one or more letters of the group name, and select the group name.
Add additional groups as needed (maximum of 75 groups).
For App attribute, enter the service provider’s corresponding groups attribute name.
Click Finish
Once app is created, you will need to upload the applications metadata to Security Journey's SSO Settings.