Integrating Google SAML with Bridge

Document created by Ike Bennion Administrator on May 3, 2016Last modified by April Gaultney on Apr 7, 2017
Version 17Show Document
  • View in full screen mode

 

This document walks you through setting up SAML with Google and Bridge. Click on images to zoom.

 

 

Google SAML Setup

 

 

Setup a Google SAML app

1. Sign in to the Google Admin console.

2. Click Apps > SAML apps

Screenshot 2016-03-10 17.47.24.png

 

 

 

 

 

 

 

3. Select the Add a service/App to your domain link or click the plus ( + ) icon in the bottom corner.

Screenshot 2016-03-10 17.47.44.png

 

 

 

 

 

 

 

4. Click Setup My Own Custom SAML App.

Screenshot 2016-03-10 17.47.54.png

 

 

 

 

 

 

 

 

 

 

5. The Google IDP Information window opens and the Single Sign-On URL and the Entity ID URL fields automatically populate.

6. Download the IDP Metadata and email it to your implementation consultant. Come back to the admin console and click Next.

Screenshot 2016-03-10 17.40.52.png

 

 

 

 

 

 

 

 

 

 

7. In the Basic Application Information window, add an application name and description, you can download a pre-formatted Bridge logo here and upload it in the Upload Logo option.

8. In the Service Provider Details window, add an:

      • ACS URL (https://{client_domain}.bridgeapp.com/auth/saml/callback),

      • An Entity ID (https://{client_domain}.bridgeapp.com,

      • And a start URL (https://{client_domain}.bridgeapp.com).

9. Click Next.

Screenshot 2016-03-10 17.50.30.png

 

All of this info can be found in the metadata that is provided to you by your implementation consultant.

 

 

 

 

Turn on SSO to your new SAML app

 

    1. Sign in to your Admin console.

    2. Go to Apps > SAML apps.

    3. Select your new SAML app. At the top of the gray box, click the button with the three vertical dots and choose:

      • On for everyone to turn on the service for all users (click again to confirm).

      • Off to turn off the service for all users (click again to confirm).

      • On for some organizations to change the setting only for some users.

 

Testing Your Google SAML App

 

    1. Open an Incognito or Private Browsing window in your preferred browser.
    2. Navigate to your Bridge instance by navigating to https://{client_domain}.bridgeapp.com.
    3. Login to your Google service. You should see your Admin Dashboard or My Learning Dashboard.
    4. If you are successful in logging in, click the profile in the top left corner, in the tray that opens, click "Log Out"
    5. If you are returned to your login page, the logout link was successful and your test was successful.

 

Troubleshooting

 

 

What You're SeeingWhat's Probably HappeningHow We Fix It
When you log out, there is no action, or a white screen appears.

There is not an inputted Log Out URL,

or

the Log Out URL is incorrect.

Ask your IC to double check the Log Out URL in your account settings. It should be: https://accounts.google.com/logout
After I log in, a blue screen pops up that says "Oh Snap, It looks like you've tried to access Bridge without telling us which account you belong to."

You have inputted the wrong ACS URL,

or

you may have inputted the wrong Start URL.

Ask your IC to confirm your domain. Double check the ACS URL and Start URL to ensure that they match the settings of the Bridge SAML Google App.

 

 

 

Additional Reading

 


2 people found this helpful

Attachments

    Outcomes