Hello,
Scenario:
We have G Suite as an identity provider in our company. Some of users also use Azure and Office 365. We want to be able to login by using Google account to Azure Ad and later have this account in AD and assign roles and groups in AD and whole Azure. We want to change passwords in Google etc.
1) How to setup SSO from Google to Azure?
2) Is that possible to user provisioning from Google to Azure?
You need to integrate Google Cloud (G Suite) Connector with Azure Active Directory.
To do this, you need:
An Azure AD subscription.
Google Cloud (G Suite) Connector single sign-on (SSO) enabled subscription.
A Google Apps subscription or Google Cloud Platform subscription.
https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/google-apps-tutorial
You can provision users from Azure to Google but not the other way around.
Hello,
Thanks for your response.
Mentioned by you tutorial describes the integration process in another way. From Azure to Google. As below:
Control in Azure AD who has access to Google Cloud (G Suite) Connector.
Enable your users to be automatically signed-in to Google Cloud (G Suite) Connector with their Azure AD accounts.
Manage your accounts in one central location - the Azure portal.
I'm looking for a solution in another way - from Google (this is an identity provider) to Azure. Can you help with this?
As you would like to use G Suite as IDP you need to follow this article. This article talks about how you configure Office 365 for SAML IDP.
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-fed-saml-idp
This should help you get this integration working.
Thanks,
Jeevan Desarda
18 people are following this question.
