Single Sign On SSO Google

  • 1
  • Question
  • Updated 3 days ago
Can I integrate the SSO feature with Gmail account?
Photo of Heart Transformation

Heart Transformation

  • 1 Post
  • 0 Reply Likes

Posted 3 years ago

  • 1
Photo of Keith Lindsay

Keith Lindsay

  • 211 Posts
  • 38 Reply Likes
As far as I know Gmail is a service provider and so is ShareFile, you need to have an identity provider in order to use SAML SSO with our product.
Photo of Michael

Michael

  • 6 Posts
  • 1 Reply Like
GSuite (business/enterprise edition) is an IDP, but based on the conversations I've seen there is some confusion over how to enter the ACS. We are waiting for Citrix to provide further feedback on exactly how to set this up.
Photo of Heart_Crafter

Heart_Crafter

  • 1 Post
  • 0 Reply Likes
Was this ever resolved?
So far, I am getting "Invalid single-sign-on request (user not valid for this provider)." when I try Google SAML/SSO.
Photo of Chris Anderson

Chris Anderson, Product Manager

  • 258 Posts
  • 35 Reply Likes
Hi Michael and Heart_Crafter,

I am currently working on setting up Google Suite as an IdP for ShareFile. Once I am finished, I will create a how to guide and post it under 'Additional Configurations' on the following support article: https://support.citrix.com/article/CTX208557

Currently I have it working if I start from Google - by clicking on my SAML Custom App (ShareFile). However, getting it to work while starting from my ShareFile login page is still a work in progress. I hope to have this working soon, at which point I will work on creating the how to guide. 
Photo of Michael

Michael

  • 6 Posts
  • 1 Reply Like
This issue is getting Google to provide the Immutable ID when ShareFile pings it and that is where I ran in to an issue. I ended up using a third party solution called CloudPages, which was the work-around.
Photo of Michael

Michael

  • 6 Posts
  • 1 Reply Like
One new comment, GSuite doesn't allow web-view applications to authenticate using SSO. So the ShareFile App for iPhone/iPad will not work as Google requires authentication in a browser and not within the app itself.