1. Atlan
  2. 🧰 Administration
  3. SSO

How to enable Google for SSO

Updated
Have more questions? Submit a request
πŸ€“ Who can do this? You will need to be an admin user within Atlan to configure SSO. You will also need to work with your Google domain administrator to carry out the tasks below in the Google Admin Center.

To integrate Google SSO for Atlan, complete the following steps.

Choose SSO provider (in Atlan)

To choose Google as your SSO provider, within Atlan:

  1. From the left menu on any screen, navigate to Admin.
  2. Under the Workspace heading, click SSO.
  3. Under Choose SAML provider, select Google and then click Configure.
  4. Under Service provider metadata, copy the ACS URL and Entity ID.

Set up SAML app (in Google Admin Center)

To set up a SAML app, within Google Admin Center:

  1. From the menu on the left, expand Apps and then click on Web and mobile apps.
  2. At the top of the table, click the Add app link and then click Add custom SAML app.
  3. Enter a name for your app, such as Atlan and then click the Continue button.
  4. Under Option 1: Download IdP metadata click the Download metadata button, save the file, and then click the Continue button.
  5. Under Service provider details enter your Atlan SAML settings:
    1. For ACS URL enter the value you copied from Atlan above.
    2. For Entity ID enter the value you copied from Atlan above.
  6. Click the Continue button.
  7. Under Attributes define the following mappings from Google Directory attributes on the left to App attributes on the right:
    1. Primary email β€”> email
    2. First name β€”> firstName
    3. Last name β€”> lastName
  8. Below the form, click the Finish button.

Assign users to the app (in Google Admin Center)

To assign users to the app, within Google Admin Center:

  1. From the app page, expand User access.
  2. Under Service status change to ON for everyone and then click Save.

Upload Google's metadata file (in Atlan)

To complete the configuration of Google SSO, within Atlan:

  1. From the left menu on any screen, navigate to Admin.
  2. Under the Workspace heading, click SSO.
  3. Under Choose SAML provider, select Google and then click Configure.
  4. To the right of Identity provider metadata click the Import from XML button.
  5. Select the GoogleIDPMetadata.xml file downloaded from Google above.
  6. At the bottom of the screen, click Save.

Congratulations β€” you have successfully set up Google SSO in Atlan! πŸŽ‰

πŸ’ͺ Did you know? By default, users can now log into Atlan with either Google SSO or a local Atlan account (via email). To only allow logins via SSO, enable the Enforce SSO option in Atlan. Once SSO is enforced, we recommend inviting users only through the SSO provider and not directly from Atlan.

Related articles

Was this article helpful?
1 out of 1 found this helpful