Google SSO Integration

Google Settings

StatusCast allows you to utilize the SAML feature built into Google Admin so that you’re administrators and users don’t need to manage multiple passwords. To get started you will first need to login to Google Admin and search for SAML Apps. Add a new SAML app to your account.

Set both the ACS URL and Entity ID to https://[your_domain].status.page/sso/saml where [your_domain] is your StatusCast domain name. If your account utilizes a CNAME then set both values to https://[your_cname]/sso/saml. Set the Name ID to Basic Information and Primary Email, and set the Name ID Format to EMAIL. To complete the setup in StatusCast you will need this SAML app's SSO URL and x.509 certificate; click the Manage Certificates link to see this info.

Statuscast Settings

In a new tab or window log into your StatusCast admin portal. Navigate to the Integrations section by clicking Settings > Integrations. Under the SSO card select the Install option. (https://[yourapp].status.page/admin/integrations/sso)

349

SSO Integration

Click Add SSO Configuration

Add SSO

To complete the integration select the role you want to assign users first. You can assign user roles to allow permissions to view or access specific component data. You should go through this process for each role you will be using SSO for authentication in StatusCast. You may set up more than one provider per role.

SSO Settings

Each Integration set up must have a unique path and Certificate even if the SSO provider is the same for varying roles.

  1. Select the User Role
  2. Select Google as your SSO Provider Type
  3. Fill in the details for the integration. See the chart below for details
  4. Be sure to Save your configuration using the orange button at the top when completed.
  5. Continue adding additional Configurations as needed
LabelDescription
NameGive this set-up a name so you can distinguish it if you need to make a change
Login PathAll SSO logins use your page url /login/[myloginpath]. This value is the part or your URL after the /login/ . This is the endpoint for the users allowing them to login using this SSO integration. You can call it anything that makes sense for you. Ex: https://mypage.status.page/login/subscribers1
RoleSelect the Role of the users for this integration. See Roles for more information.
Is Default RoleIf the default is not set, the first integration for the role will be chosen if the user is using our former standard role-based SSO paths like: /login/employee...
TypeSelect the SSO type from the dropdown. Use SAML 2.0 if the type is not defined in the dropdown
Enable Email NotificationsAutomatically sign up a Subscriber or Employee for Email notifications
Target URLEnter the SSO Target URL unique the Duo App which you can find in the setup instructions labeled as your Identity Provider Single Sign-On URL.
Map Groups AttributeOptionally, you can add a Group Attribute. See Groups Attribute
Append Domain Name to User NameIf your SSO doesn't send the username over as an email address @somewhere.com will need to be appended to the username to work with our system. Add the domain here.
CertificatePaste a copy of your X.509 Certificate

Signing In

Now your integration is complete and the users you granted access to can sign into StatusCast using their SSO credentials.

Commonly used URL paths for each of the roles are listed below, but you can now choose these in the integration settings. Be sure to send your users to the appropriate path.

Subscriber > https://[yourapp].status.page/login
Employee > https://[yourapp].status.page/login/employee Manager > https://[yourapp].status.page/login/manager Administrator > https://[yourapp].status.page/login/admin Company Administrator > https://[yourapp].status.page/login/companyadmin