Play Video

Google Cloud Identity Setup - Step by step setup for Google Cloud Identity free

Hey  fellow Google Admins. This is Goldy again. Welcome back to Google Cloud Identity course and in this video, I’ll show you how you can do Google Cloud Identity setup if you plan to use Google Cloud platform  or maybe any other Google  enterprise product or service.

First, let me show you  couple of slides to answer some of the basic questions that you might have when you start doing this set up, and then I’ll share my screen to show you the live demonstration where I’ll take my demo domain and set it up with Google Cloud Identity.

Let us start with Cloud Identity set up. But before that a few questions, first one is to understand sign up flow.

1.let us start from Cloud identity setup

In case if you’re already using Google Workspace, you can skip watching this video and rather watch my other video, which I’ll add somewhere here, which shows you how you can simply add cloud identity to your existing Workspace subscription. 

However, in case if you do not use Google Workspace or you’re not planning to use it (e.g you use Office 365 or something else), on the other side, you plan to use Google Cloud platform, Google Analytics, or any other Google Enterprise service, then this video is for you.

Because in this, we will sign up for Google Cloud Identity from scratch. 

You might also have a question on whether it will impact your existing setup in some way. 

2. We might have some questions whether it will impact your existing setup and the answer is no.

The answer is No, it will not impact your system in any way. It is just an addition of a record in your DNS, and that is it.

Now, there are a couple of watch points when you register cloud identity for your domain. The first one is banned domains.

Google does not allow you to use Google or any of the Google trademark, so make sure that Google name is not part of your domain.

3. When you register a cloud identity for your domain there is two watch points

Second, Google does not support China top level domain, so your domain can’t have seen .cn extension. 

Okay, now there are multiple options available for your domain verification as you see below.

4. There are multiple options available for your domain verification

You can go with Google Analytics, you can upload HTML file, However, I personally find DNS record addition really easy, and that’s why I’m just recommending it. You should go with either the TXT record or you can just create a CNAME record in your domain DNS. 

Now, where should you make the changes?

5. So lets see where you make the changes if your large organization

In case if you are a large organization you already figured it out, but in case if you’re a small business, I’ve seen sometimes customers are making the changes at a place where they don’t have their name servers, so make sure that you check where your name servers are residing.

whether it’s with your domain registrar or with your web host, wherever your name servers point, you should be making these DNS changes at that place.

Okay, now one more thing before we go to the set up.

6. One more thing before you start setup is TXT record or Cnamerecord

Your hostname for this TXT or CNAME depends whether you are setting up Google Cloud Identity on your domain or subdomain

In case you’re setting up Google Cloud Identity with your primary domain (e.g goldyarora.com), then your host name for the TXT should be either @ sign or the domain name (e.g goldyarora.com) depending on how your DNS provider takes it.

However, if you are signing up for Google Cloud Identity on a subdomain like dev.goldyarora.com, for that TXT should be either dev or the dev.goldyarora.com based on again how your DNS takes it.

I personally recommend not to go with subdomain unless you have a very strategic reason in place, and I’ve created one more video comparing both of these options in detail.

 

Now, I’ll show you how you would setup Google Cloud Identity with your primary domain (e.g goldyarora.com).

First, you would go to the Google Cloud Identity free sign up page.

7. Let me share my screen to show you how to set up google and click on next

I will need to provide my business information. I’ll go ahead and put that information and click next.

8. So after click on next i will provide my business details

I will enter my phone number here (in some cases Google might send the SMS to this number to verify your identity.

9. I will provide my business information

Here I will provide my current email address on which I can receive emails, this will also be helpful for password recovery if I forget my password.

10.I will provide the current email address on which i can receive emails

 

Here we need to provide our domain name, Google take domains as a standalone entity, even if I put subdomain here, for example, dev.goldyarora.com that will be considered as a primary standalone entity. 

12. will copy domain name here

It shows me a quick warning that this domains MX (mail exchanger) records (which are responsible to email routing) are not yet configured, which is okay because I’m not using Google’s Email or Google Workspace. 

I will only be using Cloud Identity for Google Cloud platform subscription here, and already have my emails setup somewhere else (e.g with Microsoft Office 365)

13. i will click on next and shows waring that your records not yet Configured so click on next

Now I will be creating the first admin account so I will give it a name, maybe Goldy Admin, and click on next.

14. So i will be creating first admin account so i will give it name

Now, I need to create the first Google Cloud Identity user in my domain, and this first user will become Super Admin for this domain, so I will choose the email and password, and then click on next.

15. now make a super admin for this domain so i will choose email and password

There is an option to educate my users about Google Workspace, but for now I’ll pass because I will be using Google Cloud platform only.

16. There is an option to educate our users but i will pass

I will prove that I’m not robot, I’ll go ahead and then provide consent that I understand and agree to Google Cloud Identity’s terms of service.

17. I will proof that i am not a robot and it will take some time

After a few seconds of processing, now it says that my Google Cloud Identity account has been set up, So I’ll go ahead and click on go to set up.

18. Now see it says that cloud identity account has been created i will click on Setup

Now I will put my Super Admin user ID and password (which I created above) to login to Google Cloud Identity Admin Console.

19. I will put the id and password here

This is the first time I’m logging into my admin account, it is asking me to accept the terms of service. 

20. This is the first time i'm logging into my admin account

After accepting the terms of service, it says, welcome to Admin console.

21. Hey it says welcome to the admin console

Now the first step that I need to do after registration of our domain with Cloud Identity is to prove Google that I own this domain.

So I’ll go ahead and click on Verify as you see in the screenshot below.

22. First step that need to do after registration of our domain with cloud identity to prove google that i own this domain and click on verify

There are a few options to verify this domain name. I can either sign in to GoDaddy to verify it automatically, or I can click on switch verification method.

23 There are few options to verify this domain

Here I can choose the method that I want to move ahead with, I’ll go with create a TXT record.

24. So in this option i will click on Create a Txt record

When I click on next and continue, Google gives me this TXT string and recommends me to create a TXT record with the value of the string which I would copy.

25. So google gives me this string and recommends me to create txt records with value of this string

And then sign in to my Godaddy DNS control panel (for you it might be Godaddy or any other domain registrar or web host based on where you have your name servers pointed). 

26. i will go back to my godaddy and Click on DNS

I’ll click on DNS to make DNS changes. 

It will not impact my existing setup in any way. I’m just adding a TXT record for that I’ll click on add record.

Record type should be TXT, hostname should be just @ and the value would be the string that I copied from Google.

I will go ahead and click on save, and now my TXT entry has been added.

27. Record type should be TXT Hostname Should be @ TXT value is my string that i copied from google will go ahead and click on save

 

I will come back to Google Cloud Identity admin console here and say, “Verify my domain now“.

28. I will go back here and verify my domain

It may take some time to reflect these DNS changes.

Okay, so after waiting for two to three minutes, my domain is now verified because Google was able to check that I have created the TXT record in my DNS for this domain.

29. So my domain is now verified which i have created TXT records

Okay, so with that, within a very few minutes, we were able to sign up for Google Cloud Identity with our own domain.

We verified our domain ownership to Google, and now we are all set to start taking next steps, which would be to create users, groups, members etc and then assign them required applications like Google Cloud platform. 

Thank you so much.

If you have any questions, comments please do not hesitate to put that under this, and I’ll be happy to help. 

RECOMMENDED READING

As you just read Google Cloud Identity Setup – Step by Step setup for Google Cloud Identity free, I would recommend following as complimentary reading.
Google Cloud Identity Pricing
Google Cloud Identity

Google Cloud Identity Pricing – how much does Google Cloud Identity actually cost

Read More →
Google Cloud Identity vs Google Cloud Platform vs Google Workspace
Google Cloud Identity

Google Cloud identity vs Google Cloud platform vs Google workspace

Read More →
Add Cloud Identity to Google Workspace
Google Cloud Identity

Add Cloud Identity to your Google Workspace Subscription (why & how)

Read More →

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Scroll to Top