Google Workspace

The Google Workspace connector for Elimity Insights fetches users and groups for a Google Workspace tenant so you can keep in control of your environment. Follow the instructions below to set up the connector for your environment.

1. Setting up a dedicated service account in Google Cloud

The Google Workspace connector for Elimity Insights authenticates as a service account. We recommend creating a dedicated service account to assign the minimal amount of permissions. Refer to the official documentation for instructions on how to create a new service account. Take note of the newly created service account's email address. Generate a secret key for the service account (again, refer to the official documentation for more information) and store the resulting JSON file securely; you'll need it to set up a source in Elimity Insights. Also make sure to enable the Admin SDK API in the service account's related project, refer to the official documentation for detailed instructions.

2. Creating a dedicated admin role in Google Workspace

We also recommend creating a dedicated admin role for the newly created service account. This admin role should only grant the 'Admin API > Groups > Read' and 'Admin API > Users > Read' privileges. The official documentation contains more information about creating a new admin role in Google Workspace. This is also a good time to note down your Google Workspace customer ID, refer to the official documentation for instructions on where to find this.

3. Assigning the admin role in Google Workspace

Follow the instructions listed in the official documentation to assign the newly created admin role to the newly created service account.

4. Creating a source in Elimity Insights

In Elimity Insights you can now create a new Google Workspace source providing the following configuration options: