Hive cloud application
You must be signed in as a super administrator for this task.
Using Security Assertion Markup Language (SAML), your users can use their Google Cloud credentials to sign in to enterprise-cloud applications.
Set up SSO via SAML for Hive
Here's how to set up single sign-on (SSO) via SAML for the Hive® application.
Step 1: Get Google identity provider (IdP) information-
Sign in to your Google Admin console.
Sign in using your administrator account (does not end in @gmail.com).
-
From the Admin console Home page, go to Apps
SAML apps.
To see Apps on the Home page, you might have to click More controls at the bottom.
- Click Add
at the bottom right.
- Locate and click Hive in the application list.
- On the Google IDP Information page:
- Copy and save the SSO URL and Entity ID.
- Download the IDP certificate.
Leave the Admin console open, you'll continue with the configuration wizard after performing the next step in the Hive application.
- Open a new incognito browser window.
- Sign in to https://app.hive.com with your Hive administrator account.
- Click your user icon at top right
Your workspace
Auth.
- On the Auth page, copy and save your Workspace ID, a unique value you'll need when you finish configuring SSO in the Admin console in Step 3 below.
- Enter the the IdP information you copied in Step 1 in the following fields:
- SAML SSO URL: SSO URL
- Identity Provider Issuer: Entity ID
- Paste the contents of the IdP certificate into the Certificate text input area.
- Go to the Appearance tab, then click Save changes.
- Return to the Admin console browser tab.
- In the SSO configuration wizard, click Next.
The Basic information window shows the Application name and Description seen by users.
- Click Next.
- On the Service Provider Details page, edit the ACS URL, replacing {your-workspace-id} with the workspace id ID you copied from Hive in Step 2.
- Click Next.
- On the Attribute Mapping page, set the Select category and Select user field values as follows for the listed attributes:
Application attribute Select category Select user field firstName Basic Information First Name lastName Basic Information Last Name - Click Finish.
-
Sign in to your Google Admin console.
Sign in using your administrator account (does not end in @gmail.com).
-
From the Admin console Home page, go to Apps
SAML apps.
To see Apps on the Home page, you might have to click More controls at the bottom.
- Select Hive.
-
At the top right of the gray box, click Edit Service
.
-
To turn on or off a service for everyone in your organization, click On for everyone or Off for everyone, and then click Save.
-
To turn on or off a service only for users in an organizational unit:
- At the left, select the organizational unit.
- Select On or Off.
- To keep the service turned on or off even when the service is turned on or off for the parent organizational unit, click Override.
- If the organization's status is already Overridden, choose an option:
- Inherit—Reverts to the same setting as its parent.
- Save—Saves your new setting (even if the parent setting changes).
Learn more about organizational structure.
- Ensure that your Hive user account email IDs match those in your Google domain.
- Open https://app.hive.com.
- Enter your email address and click Sign in with SSO. You should be automatically redirected to the Google sign-in page.
- Enter your username and password.
After your sign in credentials are authenticated, you're automatically redirected back to Hive.