Overview

You can enable SAML-based Single Sign-On for the Persona Dashboard via Google SSO via your Google Workspace account by following this guide.

By default, users can choose to login through SAML or via email and password. SAML enforcement can be configured by navigating to Organization > Security for a user with Admin permissions.

Availability

SSO is available on Growth and Enterprise plans. See our Pricing page for details.

Retrieve your Organization Slug

Log in to your Persona dashboard as a user with Admin permissions.

1. Navigate to Organization > Security.
2. Under Single Sign-On, click Set up.
3. Here, you'll find your Organization Slug.

Make note of your Organization Slug. You'll need it in the steps below.

Steps in Google Workspace

1. From Google Workspace admin console, navigate to Menu > Apps > Web and mobile apps.
2. Click on ‘Add app’ and select ‘Add custom SAML app’
3. Fill out App details. Hit CONTINUE.
4. Download IdP metadata (Option 1). Hit CONTINUE
5. Add service provider details, replace <ORGANIZATION-SLUG> from the first section
   • ACS URL: https://withpersona.com/saml/<ORGANIZATION-SLUG>/acs
   • Entity ID: https://withpersona.com/saml/<ORGANIZATION-SLUG>/metadata
6. Leave Name ID format as UNSPECIFIED and Name ID as Basic Information > Primary email and hit CONTINUE.
7. Leave attributes and group membership as-is. Hit FINISH.
8. You’ll now see your SAML app added. In this example, we named our Persona Application “withpersona SSO”.

9. If you haven’t already downloaded the metadata, click on Download Metadata.

Steps in Google Workspace

1. Log in to your Persona dashboard as a user with Admin permissions
2. Navigate to Organization > Security.
3. Under Single Sign-On, click Set up.
4. Enter the Metadata you obtained from the last step in the previous section.
   • Copy the metadata into Provide the raw Metadata XML IdP details section.
5. Click Parse metadata.