Auto-Create Users From Specific Domain With Google Workplace

federated-users

Simplify Setup

Auto-Create Users From Specific Domain With Google Workplace

The Agilicus Managed Upstream Providers option of ‘Google’ allows users to sign in with GMail and Google Workplace (G Suite) with zero-configuration. In some circumstances (for example, to enable the use of auto-create locked to a specific domain) you may wish to create your own Google Identity Provider setup.

CONTACT

Auto-Create Users From Specific Domain With Google Workplace

b767fe45 image

The Agilicus Managed Upstream Providers option of ‘Google’ allows users to sign in with GMail and Google Workplace (G Suite) with zero-configuration. In some circumstances (for example, to enable the use of auto-create locked to a specific domain) you may wish to create your own Google Identity Provider setup.

To do so, we will use the Google Console, create a Credential, OAUth2, Web application, and from there obtain a client-id and client-secret.

We will then configure the list of acceptable domains which may use it, and cross-configure this information into the Agilicus admin portal.

There is no general requirement to create your own Credentials in Google: do so if you wish finer-grained control by e.g. restricting source domain, or if you have specific audit requirements.

For more information see Google’s “Getting Started With Authentication“.

Navigate to https://console.cloud.google.com/apis/credentials . You may be prompted to enable the API for your organisation.

Automatically create users in AnyX from a specific Google Workspace domain. This simplifies user management and ensures seamless integration between your Google Workspace and AnyX environment.
Automated User Creation from Google Workspace with ANYX. Screenshot shows ANYX configuration for automatically creating users from a specific Google Workspace domain. The configuration includes settings for the Google Workspace domain, user profile details, and role assignment, streamlining user onboarding. Learn how to automate user provisioning with ANYX and Google Workspace.

Create a new OAUTH2 client of type Web Application.

Give this “credential” a name. Add a redirect URI of https://auth.__REGION_DOMAIN_NAME__/callback

Automatically create users in AnyX from a specific Google Workspace domain. This configuration automatically provisions users from your organization's Google Workspace into AnyX, streamlining access management and improving security.
Automated User Creation from Google Workspace Domain in AnyX. Streamline user onboarding by automatically creating AnyX accounts for users in a specific Google Workspace domain. This enhances security and simplifies access management. Shown: AnyX configuration screen for setting up automatic user creation from a Google Workspace domain.

At this stage you will be given two facts (client ID, client secret). You will now enter these into the Agilicus Admin portal.

In the Agilicus Admin portal, add a new Identity Provider of type ‘Other’ (this is a generic OpenID Connect Identity Provider).

Automated User Creation in AnyX with Google Workspace: Configure domain-specific user provisioning to automatically create AnyX accounts for new users in your Google Workspace domain. Streamline user onboarding and access management with seamless integration.

Enter a name (your users’ will see this, so e.g. “Agilicus Google Workplace”), the Issuer url (https://accounts.google.com), the Client ID (from above) and the Secret (from above).

You may wish to enable auto-create on this Identity Provider, in which case authenticated users will be automatically provisioned.

e5155ea4 image

At this stage, you may wish to enable “Authorized Domains” in your Google Workplace settings.

Users may now sign in to the system via this Identity Provider.

Learn More?

๐Ÿ“ง Contact

๐Ÿ“… Book a Meeting

โ†— Try Agilicus AnyX

โ“ FAQ

๐Ÿ›ˆ Email: support@agilicus.com

Return to Product Guide ๐Ÿ“š

,

Related