Book Image

Google Workspace User Guide

By : Balaji Iyer
Book Image

Google Workspace User Guide

By: Balaji Iyer

Overview of this book

Google Workspace has evolved from individual Google services to a suite of apps that improve productivity and promote efficient collaboration in an enterprise organization. This book takes you through the evolution of Google Workspace, features included in each Workspace edition, and various core services, such as Cloud Identity, Gmail, and Calendar. You’ll explore the functionality of each configuration, which will help you make informed decisions for your organization. Later chapters will show you how to implement security configurations that are available at different layers of Workspace and also how Workspace meets essential enterprise compliance needs. You’ll gain a high-level overview of the core services available in Google Workspace, including Google Apps Script, AppSheet, and Google Cloud Platform. Finally, you’ll explore the different tools Google offers when you’re adopting Google Cloud and migrating your data from legacy mail servers or on-premises applications over to cloud servers. By the end of this Google Workspace book, you’ll be able to successfully deploy Google Workspace, configure users, and migrate data, thereby helping with cloud adoption.
Table of Contents (14 chapters)
Part 1: Getting Started – Google Workspace
Part 2: Data Security
Part 3: Data Integrations
Chapter 6: Designing Custom Applications
Part 4: Migrating Data

Single sign-on

SSO is an authentication process that allows users to log into multiple applications or systems using a single set of credentials. SSO works on a trust-based model that's established between the system that has user credentials, called the Identity Provider (IdP), and the service/application that the user wants to access, called the Service Provider (SP). Typically, the SSO mechanism is implemented using the Security Assertion Markup Language (SAML) protocol.

Google Workspace supports SSO via the SAML protocol. This typically means that you will have to log in just once to be able to access all the supported applications.

As we noted in the previous chapter, Google Cloud Directory Sync (GCDS) can be used to sync user details and credentials from AD into Google Cloud Identity. Besides AD, other IdPs such as Ping Identity and Okta can be configured as the user directory and sync identities to Google Cloud.

Administrators can remove dependencies on other...