Skip to content

Integrate Google Suite

Google Workspace SAML/SSO Integration

Connect Google Workspace (formerly G Suite) and Tallyfy with SAML-based Single Sign-On. Your users can authenticate automatically with their Google credentials - no separate passwords needed.

Requirements

  • Google Workspace administrator account with super-administrator privileges
  • Tallyfy Professional or Enterprise plan
  • SAML configuration values from Tallyfy Support

Implementation process overview

You’ll work through three main phases:

Phase 1: Create Google Workspace custom SAML application

Step 1: Create a custom SAML application

  1. Sign in to the Google Workspace Admin console

  2. Navigate to Apps > Web and mobile apps

  3. Click Add App > Add custom SAML app

    Google Admin Apps Panel

Step 2: Configure basic app settings

  1. Enter “Tallyfy” as the application name
  2. Optionally upload the Tallyfy logo
  3. Click Continue to proceed to the next step

Step 3: Obtain Google Identity Provider details

  1. On the Google Identity Provider details page, collect the SSO URL (Single Sign-On URL).

  2. Collect the Entity ID (Issuer).

  3. Download the Certificate file.

    Google Identity Provider Details

Step 4: Configure Service Provider details

  1. Enter the Tallyfy ACS URL (Assertion Consumer Service URL) provided by Tallyfy Support.

  2. Enter the Tallyfy Entity ID (Service Provider Entity ID) provided by Tallyfy Support.

  3. Leave the Start URL field empty.

    Service Provider Configuration

Step 5: Configure attribute mapping

Map these user attributes exactly as shown:

Google Directory AttributeApp Attribute
Primary Emailemail
First NamefirstName
Last NamelastName

Click Finish. That’s it for the Google side.

Step 6: Enable user access

  1. In the application settings, go to User Access

  2. Set the Service status to ON for everyone (or select specific organizational units)

    Enable User Access

Phase 2: Configure SAML settings

Phase 3: Complete integration with Tallyfy

Step 1: Submit SAML information to Tallyfy

  1. Provide the collected SSO URL to Tallyfy Support.
  2. Provide the collected Entity ID to Tallyfy Support.
  3. Provide the downloaded Certificate file to Tallyfy Support.

Step 2: Configure SAML settings in Tallyfy

  1. Once Tallyfy Support has processed your information, navigate to your organization settings

  2. Locate the SAML configuration section

  3. Enter the configuration details as provided by Tallyfy Support

    Tallyfy SAML Configuration

Step 3: Enable SAML authentication

  1. Toggle the SAML activation switch to enable SSO for your organization

    Enable SAML

User provisioning and access

After you complete the integration:

  1. Share the Tallyfy login URL with your users (you’ll find it in the SAML configuration modal).

    Tallyfy Login URL

  2. Make sure users who need access have been granted access to the SAML app in Google Workspace.

  3. Existing Tallyfy users can sign in through the shared SSO URL - no separate Tallyfy passwords required.

  4. New users? They’ll be automatically provisioned in Tallyfy on their first SSO login.

Troubleshooting

Running into authentication problems? Here’s what to check:

  • Has the user been granted access to the SAML app in Google Workspace?
  • Are the attribute mappings set up correctly? (Double-check the table above)
  • Is the user accessing Tallyfy through the right SSO URL?
  • Still stuck? Contact Tallyfy Support for help

Authentication > Integrate OneLogin

A comprehensive walkthrough for setting up SAML Single Sign-On between OneLogin and Tallyfy by creating an application connector configuring SAML settings enabling user provisioning and testing the authentication flow.

Authentication > Integrate Okta

A comprehensive walkthrough for implementing SAML-based Single Sign-On between Okta and Tallyfy through application configuration user attribute mapping and SSO activation for automated user authentication and provisioning.

Integrations > Authentication and SSO

Tallyfy offers free Single Sign-On integration for paid plan customers that connects with enterprise identity providers like Microsoft Azure AD Google Workspace Okta and OneLogin to enable centralized authentication automated account provisioning enhanced security through existing corporate credentials and optional SSO-only enforcement for maximum compliance control.

Authentication > Integrate Azure AD

This comprehensive guide explains how to establish SAML-based Single Sign-On integration between Microsoft Azure Active Directory and Tallyfy through enterprise application creation SAML configuration and user provisioning setup that enables automated authentication for existing users and automatic account creation for new users accessing through the designated SSO URL.