Configuration
- Log in to your Google account and navigate to the Admin console
- Go to Menu → Apps → Web and mobile apps
- Click Add App → Add custom SAML app and follow the wizard
- In the Service Provider Details window, enter:
| Setting | Value |
|---|---|
| ACS URL | https://api.forestadmin.com/api/saml/callback |
| Entity ID | Displayed in your Forest Organization settings |
| Start URL (optional) | For IdP-initiated login |
- Download or copy the IdP metadata and paste it into Forest (see SSO configuration guide)
See the Google documentation on custom SAML applications for more details.
Troubleshooting
- Double-check all endpoints and certificate expiration dates
- Ensure the
Name ID(primary email) in your IdP matches the email address used on Forest accounts