Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Google Auth for SSO to Office 365

Posted on 2016-10-10
4
Medium Priority
?
853 Views
Last Modified: 2016-10-30
Is anyone using Google Apps Auth for SSO to Office 365?

We use Google Apps for email and are starting to use Office 365 for MS Office Suite Management with a domain account.  I can see my manually added Office 365 users in Azure AD.

I'm using G Suite's (Google Apps) administrator help page - Using SAML to set up federated SSO - Pre integrated applications N through Z - Office 365 cloud application.  The URL is: https://support.google.com/a/answer/6363817?hl=en

It seems to give good step-by-step instructions for accomplishing the task.

From the first section "Set up Office 365 as a SAML 2.0 service provider", I need to:
 - install Azure AD Connect to get the rest of my user accounts in Azure AD/Office 365
 - install AD FS for the federation

After this, step #6 states to configure the IdP certificates and set the URL using the Active Directory PowerShell on your federated Active Directory Domain.

I haven't used PowerShell to configure certificates or to set a URL, so I was wondering if anyone could provide guidance on the syntax for these commands or if there is a PowerShell script?

In case it's helpful, my domain controllers are Server 2012 R2.

If additional information is needed, please let me know.

Thank you for any assistance you can provide.
0
Comment
Question by:lshriver
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 37

Expert Comment

by:Jian An Lim
ID: 41837896
Can you explain in plain english what you want?

DO you want the user to use password from Google Apps, then login to Office 365
OR you want the user to use password from Office365, then login to Google Apps?

##########

NOTE: no, you don't need to install AADConnect and ADFS if you password is managed by Google apps.
NOte: you don't need to install ADFS to get the password over, it will much easier to use password sync and do the same job.
0
 

Author Comment

by:lshriver
ID: 41838244
Jian An Lim,

I apologize, if I wasn't clear.

I want the user to use password from Google Apps, then login to Office 365.

Can you help with the steps necessary to accomplish this?

Thank you.
0
 
LVL 37

Accepted Solution

by:
Jian An Lim earned 2000 total points (awarded by participants)
ID: 41839303
Cool

But before i go on, i need to tell you, Microsoft have not supported google IDP as authentication.
If you read https://azure.microsoft.com/en-us/documentation/articles/active-directory-aadconnect-federation-compatibility/   

So how Google try to sell you this is the password sync back to On-premises AD then use ADFS to expose it to Office 365, which defeat the whole purpose. It is not a true Gmail to Office 365 SSO.

However, i think we need to get the powershell command right.
My main issues is, i can't anyone else got the command recorded anywhere else.

the closest i read is this, and it says it is not supported without ADFS and AADconnect
http://stackoverflow.com/questions/39444365/how-to-make-google-apps-idp-for-office-365

IF this is the case I will recommend to swap and use Office 365 password to login to gmail.
this is natively supported.
0
 
LVL 37

Expert Comment

by:Jian An Lim
ID: 41865732
the vendor (microsoft) do not support to use google as IDP without going to onpremises deployment.
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of you may be aware of the recent Google Docs scam emails that have been floating around coming from various people that you know. Here's a guide on identifying How To Identify the Scam Email You will see an email from someone you’ve had co…
If something goes wrong with Exchange, your IT resources are in trouble.All Exchange server migration processes are not designed to be identical and though migrating email from on-premises Exchange mailbox to Cloud’s Office 365 is relatively simple…
This Experts Exchange video Micro Tutorial shows how to tell Microsoft Office that a word is NOT spelled correctly. Microsoft Office has a built-in, main dictionary that is shared by Office apps, including Excel, Outlook, PowerPoint, and Word. When …
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question