Moss

___________________________________________________________

This can be done by an Admin or an IT person in your company.

 1. Login to the Google admin panel and click “Add app” &gt; “Add custom SAML app”

2. Provide an app name (Moss) and click "Continue"

We need to copy two URLs from the Google panel into the Moss settings page. The certificate is used to check the SAML request validity.

Copy the following URLs (SSO URL and Entity ID) and download the certificate.

Open Moss &gt; Click on “Settings” &gt; “SAML SSO”

Paste the URLs and upload the certificate to Moss

Enable the “SAML SSO” toggle button at the top .

1. Copy the following URLs (SSO URL and Entity ID) and download the certificate.
    
   
    
2. Open Moss &gt; Click on “Settings” &gt; “SAML SSO”
    
   
    
3. Paste the URLs and upload the certificate to Moss
4. Enable the “SAML SSO” toggle button at the top .

By copying those following parameters Google can check if the expected service is going to use identity service and you can check if it works.

Open Moss &gt; Click “Settings” &gt; “SAML SSO”

Copy the parameters “SP entity ID” and “SP ACS URL” into Google

1. Open Moss &gt; Click “Settings” &gt; “SAML SSO”
    
   
    
2. Copy the parameters “SP entity ID” and “SP ACS URL” into Google
    


In the next step we need to ensure needed user attributes are exposed to Moss the app. 

Primary email - <a href="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" rel="nofollow noopener noreferrer" target="_blank">http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress</a>

First name - <a href="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" rel="nofollow noopener noreferrer" target="_blank">http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname</a>

Last name - <a href="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" rel="nofollow noopener noreferrer" target="_blank">http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname</a>

Phone number - <a href="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/mobilephone" rel="nofollow noopener noreferrer" target="_blank">http://schemas.xmlsoap.org/ws/2005/05/identity/claims/mobilephone</a>  

- Primary email - <a href="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" rel="nofollow noopener noreferrer" target="_blank">http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress</a>
  - Needed to match user to Moss account 
- First name - <a href="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" rel="nofollow noopener noreferrer" target="_blank">http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname</a>
- Last name - <a href="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" rel="nofollow noopener noreferrer" target="_blank">http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname</a>
  - Needed for card creation 
- Phone number - <a href="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/mobilephone" rel="nofollow noopener noreferrer" target="_blank">http://schemas.xmlsoap.org/ws/2005/05/identity/claims/mobilephone</a>  
  - (OPTIONAL) for 3DS feature 

Finally, we need to specify what users / user groups are allowed to login to the Moss app.

Edit the section and select “User Access” and turn it on for everyone or select a subset or group

1. Edit the section and select “User Access” and turn it on for everyone or select a subset or group
    


How to set up SSO with Google Cloud

Germany: +49 30 311 93 730

Netherlands: +31 20 241 4803

UK: +44 20 457 12718

Email: support@getmoss.com

Imprint

Find answers and get help from Intercom Support and Community Experts

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Title

Track the progress of all tickets related to your company.

Tickets portal.

{assigneeName} needs more information from you

Who can set up SSO with Google Cloud

How to set up SSO with Google Cloud

Create application

Configure Moss

Configure Google

User attributes

Assign users