Logged in as the Admin User on your Account, navigate to Authentication Providers within the Admin panel of your account, and click “Add Authentication Provider.” If you choose to disable the Google SSO option at the top of the page, users will be presented with an error upon attempting to log in using Google SSO. Give your Authentication Provider a descriptive name for future reference. Choose SAML from in the “Authentication Provider Type” dropdown. If you’re looking to set up OpenID Connect, see here.
You will then be prompted to enter your Claimed Domain. If you’ve already completed this process, your claimed domain will automatically populate this field. Otherwise, you will need to claim the domain that your organization uses for email, login, etc. Before entering your "SAML 2.0 Identity Provider Metadata," please be sure you have gathered all necessary authentication details. Many times, simply entering your Metadata URL will populate the rest of the required information.
Below the Identity Provider Metadata section you’ll see the Service Provider Metadata. This information will need to be entered into the application you’re creating in your identity provider. You can either download the metadata XML file, enter the information manually, or, if your identity provider supports it, right-click on the ‘Download File’ hyperlink, copy the link, and paste it into the proper field in your application.
