How to Setup Google Apps SAML Connector to KnowBe4 for SSO

Below are instructions on how to setup a SAML connector to KnowBe4 for SSO.

Download the IDP metadata file. Keep this in an accessible place because you'll need the SHA1 fingerprint and SSO URL found in this file for step 10. Click Next.
The Application Name, Description, and app-id will be displayed, click Next.
Fill out the fields with the appropriate information specified below. Enable Signed Response by selecting the checkbox then click Next.
- ACS URL:
  You can obtain this under your KnowBe4 account settings:
  - Log in to your KnowBe4 admin account.
  - Click your email address on the top-right, then click Account Settings.
  - Scroll to the SAML section of your settings and copy the Callback Link.
    - Example: https://training.knowbe4.com/auth/saml/xxxxxxxxxxxx/callback
- Entity ID: KnowBe4
- Start URL:
  You can obtain this under your KnowBe4 account settings:
  - Log in to your KnowBe4 admin account.
  - Click your email address on the top-right, then click Account Settings.
  - Scroll to the SAML section of your settings and copy the Sign in URL.
    - Example: https://training.knowbe4.com/auth/saml/xxxxxxxxxxxx
- Signed Response: ENABLE
- Name ID: Basic Information – Primary Email
- Name ID Format: EMAIL

Add the following Attribute Mapping, then click FINISH:
- name_id
- Basic Information
- Primary Email
Turn SAML App ON for everyone or for some organizations.
Confirm that you'd like to turn on the SAML App (Note: Google states that this may take up to 24 hours to propagate to all users).
Notify KnowBe4 that you'd like to set up SSO on your account by opening up a new support ticket. Provide the following information in the support ticket.

Note:

You can find this information in the IDP metadata file you downloaded in step 4.
- The SHA1 fingerprint
- The SSO URL

Still need assistance? Contact support.

How Do I Enable SSO/SAML for Google Suite (Google Apps)?