Google Workspace

Google Workspace - Table of Contents

Visit our YouTube Channel for more video content: https://www.youtube.com/@connectsecure

Google Workspace - Overview

Access the Google Workspace from the company-level module, Cloud Assessments.

Open

Google Workspace Setup

• Login to your Google Workspace account using an account with super admin permissions.

  • https://cloud.google.com

• Tap on the Console option

Open

• Navigate to IAM & Admin and select Create a Project.

Open

• Create a new project. Enter a project name. By default, the Organization and Location should auto-populate. Your project name is your choice, you can use something like ConnectSecure.

Open

• Once the new project is created, navigate to API & Services > Library from the left navigation menus.

Open

Open

• Use the search box and query for Google Workspace Events API and Admin SDK API. You will need to tap into each of these selections and tap the Enable button.

Open

Open

Open

• Repeat these steps for the Admin SDK API

Open

• Next, we will create service accounts for the project. Tap on the left menu and choose IAM. If you do not see this option, you can search for it at the top, as shown below.

Open

Open

• Near the top, top on the + Create service account button.

Open

• Enter the service account details and click the Create and continue button. You only need to set the name up, which is a name of your choice. The service account ID will fill itself in based on your service account name.

Open

• Assign the Owner role to the project service account.

Open

• Tap on Continue.

Open

• The following section is optional, simply tap on Done.

Open

• Select the created Service Account and navigate to Keys, where you will need to Add Key.

Open

Open

• Use the Add key > Create new key option menu.

Open

• Select JSON as the Key Type and click on Create.

• This will download the credentials JSON. Keep a copy of the JSON. This is required in the ConnectSecure portal for integration setup.

Open

• Once the credential.json is downloaded, go back to the Service Account, and you can see the OAuth2 Client ID; please copy this for the next steps.

Open

• Browse to admin.google.com

• Navigate to Security > Access and data Control > API Controls

• Tap on Domain Wide Delegations.

Open

• Add New Client ID.

Open

• Copy/paste in the OAuth2 Client ID from the steps above.

Open

• We must assign the 5 permissions scopes below to this new Client ID. You can add them with a single copy/paste using the box below. The individual URL’s are also available below.

https://www.googleapis.com/auth/admin.reports.audit.readonly

https://www.googleapis.com/auth/admin.directory.user.security

https://www.googleapis.com/auth/admin.directory.user.readonly

https://www.googleapis.com/auth/admin.directory.user

https://www.googleapis.com/auth/admin.directory.rolemanagement

Open

Proceed to the ConnectSecure Portal to continue setup

ConnectSecure Setup

Login to the ConnectSecure portal and navigate to Global > Settings > Integrations > Google Workspace.

Open

Credentials

• Enter a name to the integration, use the super credential username, and upload the credentials.json downloaded from the Google Workspace account from the steps above.

Open

• Once the credentials are saved, please finish the company mapping, navigate to Company>>Cloud Assessment module>>Google Workspace, and click SYNC.

Open

Google Workspace - Action Toolbar Overview

Open

Google Workspace - Action Toolbar Details

Jobs

Tap to view the Google Workspace-related jobs data.

Open

Alerts

Tap to view the timeline style of System Events with filtering options.

Open

Info

Tap to view the Getting Started info; see the link below for additional information.

https://cybercns.atlassian.net/wiki/x/MIDKfw

Need Support?

You can contact our support team by emailing support@connectsecure.com or visiting our Partner Portal, where you can create, view, and manage your tickets.

https://cybercns.freshdesk.com/en/support/login