Home > User Interface > Configuration > Policy Configuration > Authentication Sources > External > Google
|
Menu path: Configuration > Policies and Access Control > Authentication Sources > External > Google.
This form of authentication uses Google login credentials. A Google authentication source is predefined in the set of external authentication sources. The fields in the Google source authentication are shown below. Several API values are obtained from the Google web site during your site's registration. The registration process is described in one of the A3 Installation and Usage Guides (Installation and Usage Guide - Registration VLAN or Installation and Usage Guide - No Registration VLAN). An overview of social media authentication is available at Authentication Methods.
| Field Name | Usage | Example |
|---|---|---|
| Name | The name of the authentication source. | |
| Description | A description of the purpose of the authentication source. | Registration based on Google login credentials |
| API ID | A value provided by Google during registration with the Google API. See Google API Registration for more details. | YOUR_API_ID.apps.googleusercontent.com |
| API Secret | A value provided by Google during registration with the Google API. See Google API Registration for more details. | 123 |
| API URL | The base URL that A3 should use at authentication time for user authentication. This is typically https://accounts.google.com. | https://accounts.google.com |
| API Authorize Path | A sub-location within the API URL used for authentication. | /o/oauth2/auth |
| API Token Path | A sub-location within the API URL used for token access. | /o/oauth2/token |
| Access Token Parameter | The label associated with the access token returned from the social media's token access interchange. | oauth_token |
| Scope | The scope of the information that A3 will request. | https://www.googleapis.com/auth/userinfo.email |
| API URL of Logged User | The URL to use after a token is obtained. | https://www.googleapis.com/oauth2/v2/userinfo |
| Portal URL | The callback location used by Google. Generally https://<hostname>/oauth2/callback. See Google API Registration for more details. | http://a3.company.com/oauth2/callback |
| Authorized domains | A comma separated list of domains that the client will resolve during authentication, despite any networking restrictions. It should include: *.google.com,*.gstatic.com,googleapis.com,accounts.youtube.com, *.googleusercontent.com. Make sure to include domains from your country, for example, *.google.ca for Canada or *.google.fr for France. | *.google.com,*.gstatic.com,googleapis.com, accounts.youtube.com,*.googleusercontent.com |
| Create Local Account | If enabled, when a user completes an authentication a local A3 account will be created for the user if one does not already exist |
|
| Password Hashing Method | The algorithm used to hash passwords in the database. Only new or reset passwords are affected. One of Bcrypt, Plaintext, or NTLM. | |
| Password Length | The length of generated passwords. | 8 |
| Number of Logins for the Local Account | If Create Local Account is enabled, this field designates the number of times that the user can login. A value of 0 means an infinite number of times. | 0 |
| Authentication Rules | Indicates the actions to be performed when the authentication is satisfied. Authentication rules are covered in detail in Authentication Rules. |
Copyright © 2021 Extreme Networks. All rights reserved. Published April 2021.