Signing into Chromebooks via ClassLink QuickCards
In order for QuickCards to work on Chromebooks, users must log into ClassLink with their AD credentials once before QuickCards become active.
Open your G Suite Admin Console at https://admin.google.com
Click the “Security” option
Click “Set up single sign-on (SSO)”
Click the “Download IDP Metadata” button in the “Certificate 1” field. This file will be needed in a later step. Keep the Google Admin Console open in a separate tab, as you will need to return to the console towards the end of this process.
In ClassLink, open up the ClassLink Management Console from My Apps
Open the "SAML Console" (under the Single Sign-On section)
In the SAML Console, click “Copy Existing” in the top menu
Click “Copy” for the G Suite entry
Click the Tasks icon (…) and then click “Edit” from the ddrop-downmenu
Click “metadata text,” which is found underneath the “Metadata URL” input field.
Open the IDP metadata file that you downloaded from the Google Admin Console in a text editor (e.g. Notepad).
Copy the entire contents of the file, and then paste it into the Metadata field of the ClassLink IDP Console.
Under “Login URL,” put your custom url code (not the whole URL!).
Faces and QuickCards
If you prefer to go directly to the Faces or QuickCard page, change the 'Login URL' to the format "quickcard?school_code=[YOUR_CUSTOM_URL_CODE]"
Using Chromebooks Only?
Add &chromebook=1 to the "Login URL"
Check the box for “Use custom certificate for signing,” then click the “Create One” button.
In the “Consumer Service Url (post)” field, replace “YOUR_G_SUITE_DOMAIN” with your school’s G Suite domain.
Click “Update,” to save all settings and return to the main listing of the ClassLink IDP Console.
Click the Tasks icon (…) again, and click “Download IDP Certificate.” You will need this file in a moment.
Click the arrow next to the G Suite IDP Metadata URL (middle column) and click “Copy IDP Single Sign On Service URL”.
Return to the Google Admin Console’s Security section and check the box for “Setup SSO with third party identity provider”.
Under “Verification certificate,” click “Choose File”, then select the IDP certificate downloaded from the ClassLink IDP Console (file will be named idp_certificate.crt).
[If you do not see “Choose File,” click “Replace certificate”]
Now click the “Upload” button.
In the Sign-in page URL field, paste the “IDP Single Sign On URL” that was copied from the ClassLink IDP Console.
In the “Sign-out page URL,” paste in the following URL: https://launchpad.classlink.com/logout .
If you only plan on using ClassLink as the IDP for Chromebooks, set a network mask of 22.214.171.124/32 in the "Network masks" field. If you do not do this, all G Suite logins for your specified organization/sub-organization will be routed through ClassLink.
In another browser, navigate to one of the G Suite services for your district (e.g. https://drive.google.com/a/your_domain). Google should now redirect you to your LaunchPad URL for authentication.
Logging into Chromebooks with ClassLink?
Click here to view the documentation on using ClassLink to log into your Chromebooks!