All Collections
01. Your First Steps with Way We Do
User Provisioning and Password Management
G Suite for Business Single Sign-On Setup
G Suite for Business Single Sign-On Setup
Andrew Sutton avatar
Written by Andrew Sutton
Updated over a week ago

In order to activate Single Sign-On, you will need administrator access to all accounts, as well as the technical knowledge to correctly configure authentication and grant access. It may be necessary to contact the IT Manager or Lead Technician within your organization.

Step 1: Initial G Suite Setup

1. Click “Manage this Domain” in your Google control panel to go to Google Admin. You may be required to re-log into your account to access this area.

2. Click on Apps

1._Click_the_Apps_box.png


3. Then click the box titled SAML Apps.

2._Click_SAML_Apps.png



4. Click the link “Add a service/app to your domain”

3._Click_to_add_new_app.png



5. Click the link at the bottom “SETUP MY OWN CUSTOM APP”.

4._Click_to_setup_custom_app.png

This will give you the details you need to input into Way We Do. You will need this below.

Step 2: Activate Way We Do Setup

In a separate tab or window, navigate to Way We Do to copy the information from the setup screen to your account in Way We Do.

1. Click the person icon in the top right corner of any page in Way We Do, then click Account in the dropdown menu.

6._Click_Account.png



2. Click the menu icon to open the push navigation menu

3. Click Single Sign On

7._Click_Single_Sign-On.png



4. Enter a Single sign-on name - This name will appear on the sign-on page once the function is enabled to inform users of the single sign-on option. (e.g. Google Apps Sign-On, Acme Co. Single Sign-On, Company Login)

5. Enter the Identity ID - This was provided in the screen that appeared on step 5 above.

6. Enter the SAML SSO URL - This was provided in the screen that appeared on step 5 above.

7. Upload your certificate by clicking the Select button next to Certificate - The information passed between the Identity Provider and Way We Do needs to be encrypted, so a certificate is used.

8. Optional Settings -

  • Enable Passwords - This option disables the regular password function for Way We Do so that users must use single sign-on

  • Enable Auto-provisioning - When this is enabled, the email address used to sign-on will be automatically compared to the list of users in Way We Do. If the email address does not match a current user in Way We Do, it will create the option to automatically add a new user account for the person signing in. This is ideal for large organizations since they can simply tell users to log in and it will automatically add them as users in Way We Do.

    • NOTE: Users added through single sign-on are added as general users and are not assigned a role in the system. A role can be manually added, and the user can be changed to an Editor or Admin within Way We Do.

8._Single_Sign-On_Setup_Screen.png

9. If you are happy with the settings, you will need to turn on single sign-on by clicking the toggle button over to Yes.

10. Click Save

Step 3: Finish G Suite Setup

1. Basic Information

  1. Return to the Google setup window and click Next in the bottom right corner.

  2. Enter the application name: Way We Do

  3. Enter a description

  4. Upload a logo (optional)

  5. Click Next in the bottom right corner of the Google setup window.

9._Enter_Basic_Info.png

2. Service Provider Details

  1. Enter the ACS URL -https://[yoursubdomain].waywedo.com/SAML/AssertionConsumerService

  2. Enter the Entity ID - https://[yoursubdomain].waywedo.com

  3. Skip the Start URL line and the box for Signed Response

  4. Select the Name ID Criteria - Select “Basic Information” in the first line, “Primary Email” in the second.

  5. Select the Name ID Format - “Email”

  6. Click Next in the bottom right corner of the Google setup window.

You will need to replace the [yoursubdomain] text with the sub-domain of your unique URL of your Way We Do account.

10._Enter_Service_Provider_Details.png

3. Attribute Mapping

  1. Click the Add New Mapping button

  2. Type "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" on the first line, select Basic Information on the second, and First Name on the third.

  3. Click the Add New Mapping button again to create a new text field.

  4. Type "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" on the first line, select Basic Information on the second, and First Name on the third.

4. Click Finish in the bottom right corner of the Google setup window.

Step 4: Turn On Single Sign-On

1. Click the menu icon at the top of the description window, then click "On for Everyone.

12._Turn_on_SSO.png

2. A confirmation box will appear. Click "TURN ON FOR EVERYONE"

13._Verify_Turn_on_SSO.png

The Single Sign-on setup is now complete. Your login screen for Way We Do will include the new SSO (Single Sign-On) option.

14._New_Log_in_Screen.png

NOTE: Signing out of Way We Do will NOT automatically sign a user out of the Google account. If users are on shared computers, they will need to log out of their Google account before another user can log into Way We Do using Single Sign-On.

Related Articles
Single Sign On
Microsoft Azure Active Directory Single Sign-On Setup
How to log Into a Way We Do Account
How do I track my team's activity?
Our Pricing Structure / Costs
Did this answer your question?