> For the complete documentation index, see [llms.txt](https://intuitem.gitbook.io/ciso-assistant/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://intuitem.gitbook.io/ciso-assistant/features-focus/sso/identity-providers/google-workplace.md). # Google Workspace {% hint style="danger" %} Google Workspace doesn't allow callbacks to urls containing `http` or `localhost` so it can be tricky to test it locally. You should deploy CISO Assistant with a FQDN to bypass these restrictions. {% endhint %} Go into **Google Workspace Admin console** 1. On the sidebar menu, go to **Applications** > **Web and mobile applications**

2. Click on **Add an application** > **Add a custom SAML Application**

3. Enter **ciso-assistant** or the name of your choice and click on **continue**

4. You can copy the **SSO URL**, **Entity Id** and **x509 certificate** here but you'll be able to retreive them later

5. Fill **ACS URL** with `/api/accounts/saml/0/acs/`, enter the **Entity ID** which has to be the same than **SP entity Id** in CISO Assistant (**ciso-assistant** by default) and choose **Email** in **Name ID Format**

6. Add two mappings for **First name** and **Last Name**, fill them with those two values: `http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname`\ `http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname`

7. On application home page, you can now find the **Entity ID**, **SSO URL** and **x509 certificate**

{% hint style="warning" %} Add a user in your application doesn't automatically create the user on CISO Assistant {% endhint %} You can now [configure CISO Assistant](https://intuitem.gitbook.io/ciso-assistant/features-highlights/sso#configure-ciso-assistant-with-saml) with the **3 parameters** you've retrieved. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://intuitem.gitbook.io/ciso-assistant/features-focus/sso/identity-providers/google-workplace.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.