G Suite, or Google Workspace, is a suite of cloud computing, productivity and collaboration tools, software and products developed by Google.
Google Console
1. Log in to Google Console. Locate an existing Google service account one or create a new one using this guide.
2. Enable G Suite domain-wide delegation on this Google service account:
2.1. Under Actions, click 'three dots' → Edit.
2.2. In the service account details, click ⌵ → Show domain-wide delegation. Ensure that the checkbox 'Enable G Suite Domain-wide Delegation' is checked.
2.3. Click Save to save updates. Read more
3. Add the service account in G-Suite Admin and delegate domain-wide authority:
3.1. Log in to G Suite domain's Admin console admin.google.com. From the main menu go to Security → API controls → Manage Domain Wide Delegation.
3.2. Click Add new. Add Client ID from the service account.
3.3. Add the following permissions in 'OAuth scopes':
https://www.googleapis.com/auth/admin.directory.device.chromeos.readonly
https://www.googleapis.com/auth/admin.directory.device.mobile.readonly
https://www.googleapis.com/auth/admin.directory.group.member.readonly
https://www.googleapis.com/auth/admin.directory.group.readonly
https://www.googleapis.com/auth/admin.directory.orgunit.readonly
https://www.googleapis.com/auth/admin.directory.user.readonly
https://www.googleapis.com/auth/admin.directory.user.alias.readonly
https://www.googleapis.com/auth/admin.directory.rolemanagement.readonly
https://www.googleapis.com/auth/admin.directory.userschema.readonly
https://www.googleapis.com/auth/admin.directory.customer.readonly
https://www.googleapis.com/auth/admin.directory.domain.readonly
https://www.googleapis.com/auth/admin.directory.resource.calendar.readonly
Read more
3.4. Click Authorize.
Cloudaware Setup
1. Log in to Cloudaware account. Select Admin.
2. Locate G-Suite Customer in the list of integrations. Click +Add.
3. Fill out the form. Click Save.
*Google Service Account - select the service account that has been set up for G-Suite integration
**Admin Email - add the valid admin email with read permissions for Directory API
4. The green light in 'Status' means that G Suite Admin integration has been added successfully. If there is a red light, please contact support@cloudaware.com.
Locate the objects using Navigator in Cloudaware CMDB:
List of G Suite objects
Cloudaware supports the following Google G Suite objects:
Google G-Suite Customer |