Skip to main content

SAML authentication for Guest internet access with Google

Alexandre de THOMASSON
  • Updated

Using Google SAML authentication for Guests with Cloudi-FI: A Step-by-Step Guide

                                                            

Prerequisites

For a Native deployment (without IPsec/GRE tunnel), be sure to add the following domains to the walled garden in your captive portal configuration:

  • *.google.com

Add a Google Web App

Add basic information :

On Cloudi-Fi Side

Once you have the Cloudi-Fi application, click continue to get the configuration details.

 

Go to Settings Auth modes SAML, and enter the values for the following fields :

  • IdP EntityId: Entity ID ( Marked 1 )

  • Binding Method: Post

  • IdP Endpoint: SSO URL ( Marked 2 )

  • Logout Binding Method (Optional): Post

  • Logout Endpoint: Logout URL ( Marked 2 )

  • IdP Signing Certificate (x509 format): Click the copy link ( Marked 3 ) and paste the certificate content.

  • Email Attribute name: NameID

  • Fullname Attribute (Optional) : lastname

Continue Google App Setup

On the Service Provider details page, enter the values for the following fields :

  • ACS URL (Assertion Consumer Service URL): Copy and paste the linkback URL ( Marked one on the Below image )

  • Entity ID: Copy and paste the Cloudi-Fi Entity ID ( Marked two on the below image )

Finalize the Google App configuration with the following configuration

 

Related to

Related articles

Comments

0 comments