Skip to main content

Setting Up SSO with Google Workspace

Rhombus Support
Updated

Topics included in this article:

Overview

Single Sign-On is a way to sync sign-on across multiple applications, allowing you to log in to all applications with one user account and password.

Rhombus supports any SAML SSO (single sign-on) identity providers. This article covers how to configure SSO with Google Workspace.

 

Recovery Users

A Recovery User is a user account in your organization that bypasses SAML once enabled.

Note: We recommend having at least two Super User Accounts as Recovery Users when enabling SSO to ensure you have a method of logging and disabling SSO in the event SAML encounters errors.

Enabling a user account as a Recovery User is performed during the SSO configuration process in the Rhombus console.
1. Log into the Rhombus console, navigate to "Settings," and click "Single Sign-On."

Screenshot 2025-05-08 at 9.27.23 AM.png

 
2. Under the Single Sign-On dropdown menu, enter your team name and click the toggle beside "Use Single Sign-On for Rhombus Console."

Screenshot 2025-05-08 at 9.40.57 AM.png

 
3. Click the dropdown menu next to "SSO Recovery Users," select all users you wish to be recovery users, and click "OK." A blue dot will indicate the users who are designated to be recovery users.

Screenshot 2025-05-08 at 9.33.36 AM.png

 

Google Admin

1. Log in to your account at https://admin.google.com/

2. Click on "Apps."

CleanShot 2025-05-08 at 10.43.47@2x.png

 

3. Click "Web and mobile apps."

CleanShot 2025-05-08 at 10.41.03@2x.png

 

4. Click "Add App" and select "Add custom SAML app."

Screen_Shot_2021-01-06_at_11.24.45_AM.png

 

5. Enter "Rhombus Systems" for the app name.

Screen_Shot_2021-01-06_at_11.26.07_AM.png

 

6. Under Option 1, select "Download Metadata" for IDP metadata. Keep this file for later.

Screen_Shot_2021-01-06_at_11.34.45_AM.png

 

7. After downloading the IDP metadata, you will be asked for "Service Provider details." Navigate back to the Rhombus console, then copy and paste the information below "Setup SSO with Rhombus Service Provider." Name ID Format will be "EMAIL."

Note: In the "ACS URL" field, the complete URL from the Rhombus Console must be entered.

Screenshot 2025-05-08 at 9.57.02 AM.png

Screen_Shot_2021-01-06_at_11.43.57_AM.png

Note: Be sure to remove the leading spaces within the EntityID field.

 

8. Click "Continue" in the bottom right corner, click "Finish," and you'll have completed the necessary steps within the Google Admin.

9. Back in the Rhombus console, open the XML file downloaded in step #6. Copy and paste the entirety of its contents in the "IDP MetaData XML" field, and click "Save."

 

Note: Any existing users will now use your identity provider. If you have users who are not in your identity provider, they will no longer be able to log in.

 

Helpful Links

Contact Support or Sales

Have more questions? Contact Rhombus Support at +1 (877) 746-6797 option 2 or support@rhombus.com.

Interested in learning more? Contact Rhombus Sales at +1 (877) 746-6797 option 1 or sales@rhombus.com.

 

Related articles

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk