# Google Workspace

## Overview

[Google Workspace](https://workspace.google.com), formerly known as G Suite, is a collection of cloud services and software products developed by Google. This article describes how to set up Google Workspace as an SSO provider in order to access [VGS Dashboard](https://dashboard.verygoodsecurity.com).

## Setup

1. Sign in to your [Google Admin console](https://admin.google.com/) and navigate to **Apps** > **SAML apps**.

<figure><img src="/files/jhJVqpLTwQ66qBI781aL" alt=""><figcaption></figcaption></figure>

2. Select **Add custom SAML app** from the **Add App** dropdown list in the upper left corner of the screen.
3. Give the app a name and click **Continue**.

<figure><img src="/files/65q20inzeB2uHDz8XWNY" alt=""><figcaption></figcaption></figure>

4. On the **Google Identity Provider details** page, download the **IDP metadata** file and send it to [support@vgs.io](mailto:support@verygoodsecurity.com).

> You will be able to use your IDP to login and [verify SSO](/enterprise-platform/access-management/enterprise-identity-providers/saml-2.0-configuration.md) *only* after [VGS Support](mailto:support@verygoodsecurity.com) will process your **IDP metadata**.

5. On the **Service provider details**,
   * enter **ACS URL** and **ENTITY ID** as provided by VGS,
   * check **Signed response**,
   * and set **Name ID format** to `EMAIL`.

> You can find **ACS URL** and **ENTITY ID** values on **Organization Settings** page on [Dashboard](https://dashboard.verygoodsecurity.com).\
> \
> To make Login via the Google App Launcher available, please add to the ACS url `/clients/dashboard` for POST binding.

6. Lastly, on the **Attribute mapping** page, add the following mapping: Google Directory attribute **Primary email** to `email`.

<figure><img src="/files/iHQwDIFZ5vMLPiOi4iI9" alt=""><figcaption></figcaption></figure>

## Turn On the App

Navigate to **Apps** > **SAML apps** and select your app from the list. Then, go to **User access** and turn it on for everyone.

<figure><img src="/files/XX4g0B1lCJ6KJKB1iuvX" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.verygoodsecurity.com/enterprise-platform/access-management/enterprise-identity-providers/google-workspace.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.