Pritunl supports single sign-on with Google business apps. This allows users to use their Google employee account to authenticate with Pritunl. Oauth is used to authenticate users, re-authentication is also done on each connection. When a Google user is removed or disabled they will no longer be able to connect to a Pritunl server. To start set the Single Sign-On to Google and set the Google Apps Domain. The domain should be the domain used for the business Gmail such as
pritunl.com. Multiple domains can be separated by a comma. The single sign-on organization will control which organization Google users are added to.
Once configured a Sign in with Google button will appear on the login page.
After a user clicks Sign in with Google they will be prompted to approve the Oauth login. Then they will be directed to their VPN profiles.
If users require different privileges custom organizations can be defined using a plugin. More information can be found in the Plugins documentation.