Contact Us
|
+44 01737 647882
|
Log In
Human Focus Logo
|
|
Product has been added to your basket.
Fully Accredited Courses
24/7 Online Training
Discounts on Bulk Buying
Desktop, Tablet & Mobile

Single Sign ON (SSO) Set-up for Google Workspace

Please follow the steps below to configure SAML-based Single Sign-On (SSO) between Google Workspace and the Human Focus e-Learning system.

This guide walks your Google Workspace Super Admin through creating a custom SAML application and mapping the required user attributes. Once complete, send the Identity Provider details to Human Focus and our team will activate SSO for your account. For assistance contact support@humanfocus.co.uk.

1. Sign in to Google Admin Console and navigate to Web and mobile apps

Sign in to your Google Workspace Admin Console at admin.google.com using your Super Admin account. From the left-hand menu click Apps, then select Web and mobile apps.

G Google Admin admin.google.com Search 🏠 Home 👥 Users 📁 Directory 🏢 Organisational units 📋 Groups 📱 Apps Web and mobile apps Google Workspace LDAP 🔒 Security 📊 Reporting ⚙️ Account settings Search for users, settings, policies... A Web and mobile apps Manage SAML apps and OAuth clients for your organisation + Add app Filter apps NAME STATUS TYPE G Gmail Core Google service ON for everyone Google Workspace D Google Drive Core Google service ON for everyone Google Workspace M Google Meet Core Google service ON for everyone Google Workspace → Click "+ Add app" above to begin adding the Human Focus SAML application Then select "Add custom SAML app" from the dropdown menu

2. Click “+ Add app” and select “Add custom SAML app”

Click the + Add app button at the top of the Web and mobile apps page. A dropdown will appear — select Add custom SAML app.

Web and mobile apps + Add app ▾ Add custom SAML app Search for an app Add OAuth client Select this option Creates a custom SAML application

3. Name your application and click “Continue”

On the App details page, enter a recognisable name — for example “Human Focus e-Learning”. Optionally upload the Human Focus logo. This name will appear in the Google Apps launcher for your users. Click Continue.

1 App details 2 Google IdP info 3 Service provider 4 Attribute mapping App details Enter a name and optional description for this application. App name * Human Focus e-Learning Description (optional) Human Focus e-Learning SSO App icon (optional) Upload PNG/JPG Continue Cancel

4. Download the Google Identity Provider (IdP) details

Google will display its Identity Provider details. You must collect the following and send to Human Focus later:

Option A — Click Download Metadata to download an XML file containing all IdP details (easiest option).

Option B — Note the SSO URL and Entity ID individually, and click Download Certificate to save the X.509 certificate.

App details 2 Google IdP info 3 Service provider 4 Attribute mapping Google Identity Provider details Record these values — you will need to send them to Human Focus. SSO URL https://accounts.google.com/o/saml2/idp?idpid=C01abc1234 Copy Entity ID https://accounts.google.com/o/saml2?idpid=C01abc1234 Copy Certificate -----BEGIN CERTIFICATE----- MIIDdDCCAlygAwIBAgIGAXrqCFvWMA0GCSqGSIb3DQEBCwUA... -----END CERTIFICATE----- ⬇ Download Certificate ⬇ Download Metadata ⚠ Save this data — needed later Continue
Important: Save the certificate file and note the SSO URL and Entity ID. You will email these to Human Focus to complete the setup.

5. Enter the Service Provider (SP) details

On the Service provider details screen, enter the following values exactly as shown. Set Name ID format to EMAIL and Name ID to Basic Information > Primary email. Ensure Signed response is checked. Click Continue.

ACS URL (Assertion Consumer Service URL)
https://www.humanfocus.org.uk/CBTbyB/SAML/AssertionConsumerService.aspx
Entity ID
https://www.humanfocus.org.uk/
3 Service provider 4 Attribute mapping Service provider details Enter the details provided by Human Focus. ACS URL * https://www.humanfocus.org.uk/CBTbyB/SAML/AssertionConsumerService.aspx Entity ID * https://www.humanfocus.org.uk/ Start URL (optional) Name ID format * EMAIL Name ID * Basic Information > Primary email Signed response Continue Back
Important: The ACS URL and Entity ID must be entered exactly as shown above — even a trailing slash difference can cause authentication failures.

6. Configure Attribute Mapping

On the Attribute mapping screen, click Add mapping and configure the attributes below. These allow Human Focus to receive the correct user identity and assign the appropriate role upon sign-in.

App attribute (Human Focus) Google Directory attribute
first_name Basic Information > First name
last_name Basic Information > Last name
email Basic Information > Primary email
roles Employee Details > Job title (or a custom attribute)
Role Mapping: If you want to enable Role Mapping in Human Focus (to automatically assign learner or manager permissions), it is important to add the roles attribute. Please contact Human Focus to confirm the expected role values before enabling this feature.
4 Attribute mapping Attribute mapping Map Google Directory attributes to the app attributes required by Human Focus. GOOGLE DIRECTORY ATTRIBUTE APP ATTRIBUTE Basic Information > First name first_name Basic Information > Last name last_name Basic Information > Primary email email Employee Details > Job title roles + Add mapping Finish

You will see the added attributes in the Attribute mapping section. Click Finish to save the application configuration.

7. Enable the app for users in your organisation

After saving, you will be taken to the app overview page. By default the app is OFF for everyone. Click User access, select your entire organisation or specific Organisational Units, and set the status to ON. Click Save.

Human Focus e-Learning User access SAML attribute mapping Service provider details Google Identity Provider Certificates & tokens User access Choose which users can access Human Focus e-Learning Your Organisation ON for everyone Training Department ON — Inherited from parent Finance Department OFF ℹ Changes may take up to 24 hours to propagate to all users. Save

8. Send the IdP details to Human Focus

Under the Google Identity Provider details section (accessible from the left-hand settings panel of your new SAML app), you will find the Login URL, Entity ID, and Certificate. This data needs to be sent to Human Focus.

Google Identity Provider details Send the following to Human Focus at support@humanfocus.co.uk to complete your SSO setup. SSO URL (Login URL) https://accounts.google.com/o/saml2/idp?idpid=C01abc1234 Copy URL Entity ID (Issuer) https://accounts.google.com/o/saml2?idpid=C01abc1234 Copy URL Certificate GoogleIDPCertificate.cer — X.509 Base64 certificate ⬇ Download Certificate → Email these to support@humanfocus.co.uk along with your account name

Email the SSO URL, Entity ID, and downloaded Certificate file to support@humanfocus.co.uk, referencing your account name. Our team will activate SSO for your account within 1–2 business days.