IT Set-up
      Back to home
      1. Help Centre
      2. IT Set-up

      Single Sign On (SSO) for Google Schools

      Learn how to configure Google for use with Wellio's Single Sign-On system.

      This process is divided into four phases:

      Step 1: Set Up Application & Upload Metadata File

      1. Log in to the Google Admin Console Home page

      2. Go to Apps -> Web and Mobile Apps

      3. Click Add App -> Add Custom SAML App

      4. Add 'Wellio' as the App name, and click Continue twice

      5. Download the Metadata XML file from the Google Admin Console
      6. Upload the Metadata XML file in the Metadata section of Wellio's SSO Setup page

      Step 2: Set Up Application & Configure SAML

      On the Service Provider Details screen, enter the following:

      • ACS URL: Copy & paste this from Wellio
      • Reply URL: Copy & paste this from Wellio
      • Signed Response: Leave unchecked ⬜️
      • Name ID Format: EMAIL (This might need to be PERSISTENT if 403 errors occur during testing)
      • Name ID: Basic Information, Primary Email

       Step 3: Map User Attributes & Claims

      1. In the SAML Attribute Mapping section, map the required attributes to match the following:

      2. Click User Access and then turn it on for everyone (as below) or for specific organizational units as appropriate, and click Save

      Please note: It may take up to 24 hours for this change to take effect for all users.

      Step 4: Provide Test Login Details

      To verify the SSO setup, provide credentials for the following:
      • Teacher Test Account: Email & password
      • Student Test Account: Email & password

      These accounts will be provisioned in Wellio for testing. The test accounts should be different and be a school-affiliated email address. 

      Step 5: Submit for Review & Testing

      Once you've completed the steps above, we'll use the test account credentials you've provided in Step 4 to verify the configuration is working as expected before setting SSO live for your school.

       

      Important: In order for SSO to work as expected, users must be signed into their school-affiliated Google account in order to be able to log in to Wellio (or at least not signed into a different Google account).

       

      User Matching for existing users (if needed)

      If your school previously used Wellio without SSO, existing accounts must be correctly linked to email addresses before activation. We’ll match accounts where possible and provide a list of any unmatched accounts for you to confirm.

      After configuration testing, we’ll be in touch if user matching is needed and provide simple instructions to complete the process for a smooth SSO transition.