Integrate Google Workspace

Google Workspace SAML/SSO Integration

Connect Google Workspace (formerly G Suite) and Tallyfy with SAML-based Single Sign-On. Your users can authenticate automatically with their Google credentials - no separate passwords needed.

Coordination Required

SSO setup requires exchanging configuration information between your organization and Tallyfy. You can’t complete this process on your own. Submit a support ticket to get started.

Requirements

• Google Workspace administrator account with super-administrator privileges
• Tallyfy Professional or Enterprise plan
• SAML configuration values from Tallyfy Support

Implementation process overview

You’ll work through three main phases:

Phase 1: Create Google Workspace custom SAML application

Step 1: Create a custom SAML application

1. Sign in to the Google Workspace Admin console ↗

2. Navigate to Apps > Web and mobile apps

3. Click Add App > Add custom SAML app

   

Step 2: Configure basic app settings

1. Enter “Tallyfy” as the application name
2. Optionally upload the Tallyfy logo
3. Click Continue to proceed to the next step

Step 3: Obtain Google Identity Provider details

1. On the Google Identity Provider details page, collect the SSO URL (Single Sign-On URL).

2. Collect the Entity ID (Issuer).

3. Download the Certificate file.

   

Step 4: Configure Service Provider details

1. Enter the Tallyfy ACS URL (Assertion Consumer Service URL) provided by Tallyfy Support.

2. Enter the Tallyfy Entity ID (Service Provider Entity ID) provided by Tallyfy Support.

3. Leave the Start URL field empty.

   

Step 5: Configure attribute mapping

Map these user attributes exactly as shown:

Google Directory Attribute	App Attribute
Primary Email	email
First Name	firstName
Last Name	lastName

Click Finish. That’s it for the Google side.

Step 6: Enable user access

1. In the application settings, go to User Access

2. Set the Service status to ON for everyone (or select specific organizational units)

   

Phase 2: Configure SAML settings

Phase 3: Complete integration with Tallyfy

Step 1: Submit SAML information to Tallyfy

1. Provide the collected SSO URL to Tallyfy Support.
2. Provide the collected Entity ID to Tallyfy Support.
3. Provide the downloaded Certificate file to Tallyfy Support.

Step 2: Configure SAML settings in Tallyfy

1. Once Tallyfy Support has processed your information, navigate to your organization settings

2. Locate the SAML configuration section

3. Enter the configuration details as provided by Tallyfy Support

   

Step 3: Enable SAML authentication

1. Toggle the SAML activation switch to enable SSO for your organization

   

User provisioning and access

After you complete the integration:

1. Share the Tallyfy login URL with your users (you’ll find it in the SAML configuration modal).

   

2. Make sure users who need access have been granted access to the SAML app in Google Workspace.

3. Existing Tallyfy users can sign in through the shared SSO URL - no separate Tallyfy passwords required.

4. New users? They’ll be automatically provisioned in Tallyfy on their first SSO login.

How the authentication flow works

This shows the complete SAML authentication flow after configuration is complete.

What to notice:

• Automatic user provisioning - New users are created automatically on first login (step 9a), eliminating manual account setup
• SAML attribute mapping - The email, firstName, and lastName attributes configured earlier (step 7) determine how user accounts are created and matched
• Single authentication point - Users authenticate only with Google (step 4-5), never entering Tallyfy passwords

Troubleshooting

Running into authentication problems? Here’s what to check:

• Has the user been granted access to the SAML app in Google Workspace?
• Are the attribute mappings set up correctly? (Double-check the table above)
• Is the user accessing Tallyfy through the right SSO URL?
• Still stuck? Contact Tallyfy Support for help

Related articles

Authentication > Integrate OneLogin SSO

OneLogin SAML/SSO integration with Tallyfy enables automatic user authentication through OneLogin credentials via a collaborative setup process that involves creating a SAML application connector configuring authentication settings and working with Tallyfy Support to exchange configuration details for seamless single sign-on with automatic user provisioning.

Authentication > Integrate Okta SSO

Okta SAML/SSO integration with Tallyfy enables automatic user authentication and account creation through a three-phase setup process involving creating an Okta SAML application configuring settings in both systems and coordinating with Tallyfy Support to exchange configuration metadata for seamless single sign-on within 30 minutes.

Integrations > Authentication and SSO

Tallyfy offers free SSO integration with enterprise identity providers like Microsoft Entra ID Google Workspace Okta and OneLogin allowing teams to use corporate credentials for secure authentication while also enabling SSO-based approvals as a cost-effective alternative to traditional e-signature solutions for internal company processes.

Authentication > Integrate Microsoft Entra ID SSO

Microsoft Entra ID SSO integration with Tallyfy provides seamless single sign-on authentication and automatic user provisioning through a collaborative 30-minute setup process that involves creating an enterprise application configuring SAML settings and coordinating with Tallyfy Support to exchange configuration details.