# Setting up LDAPS Google
This procedure guides you step-by-step through configuring LDAPS with Google and connecting it to GLPI.
{% hint style="warning" %}
LDAPS with Google requires a specific license. Please refer to [Google Support](https://support.google.com/a/answer/6043385) to verify if your license is sufficient.
{% endhint %}
4 steps are necessary to correctly configure your LDAPS.
1. Add a new LDAP client
2. Configure access permissions
3. Create a certificate
4. Connect your LDAP client to GLPI
## Add a new LDAP client
### Application Creation
Add a Google LDAP client
* From the [Admin Console](https://admin.google.com/), navigate to **Apps** > **LDAP**
* Click **Add Client**
* **Name** the client and add a description if needed
* Click **Continue**
## Configure Access Permissions
You must then set the level of access this LDAP client will have.
Manage application permissions
### Verify user credentials
When a user tries to sign in to the application, this setting specifies which organisational units and groups the LDAP client can access to verify the user’s credentials. Users who aren’t in a selected organisational unit and groups can’t sign in to the application.
More info
### Read user information
This setting specifies which organisational units the LDAP client can access to retrieve additional user information.
More info
You can also select the attributes that can be read by the LDAP client:
* System attributes
* Custom public attributes
* Custom private attributes
Click View attributes to check each category of each attribute.
### Read group information
This setting specifies whether the LDAP client can check a user’s group memberships for purposes, such as a user’s role in the application.
More info
Once all these options are configured, click **Add LDAP Client**.
## Create a Certificate
* The certificate is logically generated upon application creation. If not, click on your application and go to the **Authentication** section.
Generate a certificate
* Then click **Generate new certificate**.
* Download the certificate and its key, transfer it to the GLPI server, and unzip it into the desired folder.
Download the certificate
## Connect Your LDAP Client to GLPI
Add LDAPS from GLPI
* From **Setup**> **Authentication** > **LDAP Directory**, click **`+ Add`**
* Enter the information related to your LDAPS:
* **Server**: `ldaps://ldap.google.com`
* **Port**: `636`
* **BaseDN**: Enter your domain (e.g., `dc=my_domain,dc=com`)
* Click **`+ Add`**
* From the **Advanced Information** tab, enter the path to the certificate and its key in the corresponding fields (refer to the previous step if needed).
Add certificates from GLPI
## Test LDAPS
* Go to the **Test** tab to verify that your LDAPS is functioning correctly.
Test your LDAPS
You can now go to **Administration** > **Users** > **LDAP Directory Link** and import your users and groups.
Import users from LDAPS
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://help.glpi-project.org/tutorials/authentication/setting-up-ldaps-google.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.