G Suite Single Sign-On (SSO)

With G Suite Single Sign-On support, Directory Server can become an identity provider for your G Suite domain. This allows users to log into G Suite services (such as Gmail or Google Calendar) using their accounts and passwords stored on Directory Server, eliminating the need for users to remember another set of accounts and passwords.

Before you start:

  1. Go to your G Suite Admin Console and enable the G Suite Admin API. For detailed instructions, please consult G Suite documentation.
  2. Synchronize the accounts between your Directory Server and G Suite with Google Cloud Directory Sync tool.

To configure Single Sign-On for your G Suite domain:

  1. Go to the G Suite Single Sign-On tab.
  2. Check the box marked Enable G Suite Single Sign-On.
  3. Enter your G Suite domain name.
  4. Enter the URL of your Synology NAS which is accessible by G Suite. Remember to specify the protocol (i.e., HTTP or HTTPS) and the port number. For example, http://www.myds.com:5000.
  5. Click the Apply button.
  6. Enter the username and password belonging to the super administrator of your G Suite domain.

    Note:

    If Google 2-step verification is enabled for your G Suite administrator account, please use your application-specific password instead. For more information, see Google's support documentation.