Setting Up HDE Access Control (G Suite)

This article consists of the instructions on how to correctly setup Access Control so that it is fully functional within your G Suite domain environment. After completing this setup, you will be able to start using the features of HDE Access Control such as Single Sign-on, user account management, password policy settings, access policy settings and more.

Step 1 - Log in to your Access Control Admin Console

https://ap.ssso.hdems.com/admin/yourdomain

Picture1__4_.png

Step 2 - After logging in to the Admin Console, please click on "Domain Settings" as shown as below.

Picture2__1_.png

Scroll all the way down to the bottom where you can find "Server Certification". Please click on "Download server certification." to download the .cert file that will be used later in the setup.

Picture3__1_.png

Step 3 - Please log on to the Google Admin Console with your Google Administrator account. 

Screen_Shot_2015-12-02_at_11.13.29_AM__1_.png

Then, click on "Security" as shown as below.

Screen_Shot_2015-12-01_at_6.09.49_PM__1_.png

Step 4 - In the "Security" settings interface and click on "API reference".

Screen_Shot_2015-12-01_at_6.32.59_PM__1_.png

Step 5 - In the "API reference" settings, check the option "Enable API access". Then, click "Save".

Screen_Shot_2015-12-01_at_6.38.18_PM__1_.png

Step 6 - Next, in the "Advanced settings", click on "Manage API client access".

Screen_Shot_2015-12-01_at_6.42.01_PM__1_.png

Step 7 - In the "Manage API client access" interface, input the details below into the "Client Name" and "One or More API Scopes".

Screen_Shot_2015-12-02_at_10.06.53_AM__1_.pngClient Name : [Please refer to your Connection Settings document that we have provided]

One or More API Scopes : [Please refer to your Connection Settings document that we have provided]

Step 8 - Please repeat Step 7 with the second set of details in your Connection Settings document.

Screen_Shot_2015-12-02_at_10.06.53_AM__2_.png

Client Name : [Please refer to your Connection Settings document that we have provided]

One or More API Scopes : [Please refer to your Connection Settings document that we have provided]

By the end of Step 7 and Step 8, you will have two Authorized API clients.

Step 9 - Please return to "Security" interface and click on "Set up single sign-on (SSO)" 

Screen_Shot_2015-12-02_at_10.22.26_AM__1_.png

Step 10 - Please scroll to the bottom part of the "Set up single sign-on (SSO)", first Check the "Setup SSO with third party identify provider" option. In "Verification certificate", choose the "Server Certification" you have downloaded from your Access Control Admin Console in Step 2 and upload it. Then, fill in the details accordingly with the details below for "Sign-in page URL", "Sign-out page URL", and "Change password URL". 

Server_Certification_Setup__1_.png

Sign-in Page URL: [Please refer to your Connection Settings document that we have provided]

Sign-out Page URL: [Please refer to your Connection Settings document that we have provided]

Change password URL: [Please refer to your Connection Settings document that we have provided]

Next, check the "Use a domain specific issuer" option. Finally, click "Save" to complete the entire Access Control Setup. 

          
Was this article helpful?

Frequently Asked Questions (FAQs)

Powered by Zendesk