Google Apps Single Sign-On (SSO)

With Google Apps Single Sign-On support, Directory Server can become an identity provider for your Google Apps domain. This allows users to log into Google Apps services (such as Gmail or Google Calendar) using their accounts and passwords stored on Directory Server, eliminating the need for users to remember another set of accounts and passwords.

Before you start:

  1. Go to your Google Apps Admin Console and enable the Google Apps Admin API. For detailed instructions, please consult Google Apps documentation.
  2. Synchronize the accounts between your Directory Server and Google Apps with Google Apps Directory Sync tool.

To configure Single Sign-On for your Google Apps domain:

  1. Go to the Google Apps Single Sign-On tab.
  2. Check the box marked Enable Google Apps Single Sign-On.
  3. Enter your Google Apps domain name.
  4. Enter the URL of your Synology NAS which is accessible by Google Apps. Remember to specify the protocol (i.e., HTTP or HTTPS) and the port number. For example, http://www.myds.com:5000.
  5. Click the Apply button.
  6. Enter the username and password belonging to the super administrator of your Google Apps domain.

    Note:

    If Google 2-step verification is enabled for your Google Apps administrator account, please use your application-specific password instead. For more information, see Google's support documentation.