Supervisor configuration parameters
Google Workspace (formerly GSuite) is a cloud computing, productivity, and collaboration tool. It includes the Google web applications Gmail, Drive, Hangouts, Calendar, and Docs. It also includes an interactive whiteboard. The enterprise version offers custom-domain email addresses, additional storage, and 24/7 phone and email support.
You must create a service account to access the Google Workspace services. For information on creating a service account, see Creating a service account in Google Workspace.
To configure the connector, following parameters are required:
-
Connector name
-
UserName
-
Private Key (Whole JSON content of private key file created for service account)
-
Target URL (Cloud application's instance URL used as targetURI in payload, for example: https://www.googleapis.com/admin/directory/v1)
- Customer Id
-
Instance DateTime Offset (refer Configuring additional datetime offset in connectors for more details).
Supported objects and operations
Users
Table 182: Supported operations for Users
Create User |
POST |
Update User |
PUT |
Delete User |
DELETE |
Get User |
GET |
Get All Users |
GET |
Get All Users with Pagination |
GET |
Groups
Table 183: Supported operations for Groups
Create Group |
POST |
Update Group |
PUT |
Delete Group |
DELETE |
Get Group |
GET |
Get All Groups |
GET |
Get All Groups with Pagination |
GET |
Mandatory fields
Users
-
FirstName
-
LastName
-
Password
Groups
Email
User and Group mapping
The user and group mappings are listed in the tables below.
Table 184: User mapping
Id |
id |
userName |
primaryEmail |
Name.GivenName |
name.givenName |
Name.FamilyName |
name.familyName |
Name.Formatted |
name.fullName |
DisplayName |
name.fullName |
Emails[0].value |
primaryEmail |
Addresses[0].StreetAddress |
streetAddress |
Addresses[0].Locality |
locality |
Addresses[0].Region |
region |
Addresses[0].PostalCode |
postalcode |
PhoneNumbers[0].Value |
phones[0].value |
PhoneNumbers[0].Type |
phones[0].type |
Active |
suspended |
ExternalId |
externalIds.value |
Extension.Organization |
organizations.name |
Extension.Department |
organizations.department |
Extension.Division |
organizations.location |
Created |
creationTime |
Groups
Table 185: User mapping
Id |
id |
displayName |
name |
members.value |
groupMembers.id |
members.type |
groupMembers.type |
groupExtension.Email |
email |
groupExtension.Description |
description |
Connector limitations
-
Connector supports cursor based pagination even with any change at count in subsequent requests.
-
Created date is displayed for Users. Created date and Modified date are not displayed for Groups.
-
Group information of user is not displayed in user details.
-
The Email ID of Users and Groups to be created should be provided along with the domain name of target instance.
Google Workspace connector for Safeguard for Privileged Passwords
- The following OAuth scopes need to be authorized:
Supported objects and operations
Google Workspace (formerly GSuite) is a cloud computing, productivity, and collaboration tool. It includes the Google web applications Gmail, Drive, Hangouts, Calendar, and Docs. It also includes an interactive whiteboard. The enterprise version offers custom-domain email addresses, additional storage, and 24/7 phone and email support.
You must create a service account to access the Google Workspace services. For information on creating a service account, see Creating a service account in Google Workspace.
Supervisor configuration parameters
To configure the connector, following parameters are required:
-
Connector name
-
UserName
-
Private Key (Whole JSON content of private key file created for service account)
-
Target URL (Cloud application's instance URL used as targetURI in payload, for example: https://www.googleapis.com/admin/directory/v1)
- Customer Id
-
Instance DateTime Offset (refer Configuring additional datetime offset in connectors for more details).
Users
Table 182: Supported operations for Users
Create User |
POST |
Update User |
PUT |
Delete User |
DELETE |
Get User |
GET |
Get All Users |
GET |
Get All Users with Pagination |
GET |
Groups
Table 183: Supported operations for Groups
Create Group |
POST |
Update Group |
PUT |
Delete Group |
DELETE |
Get Group |
GET |
Get All Groups |
GET |
Get All Groups with Pagination |
GET |
Mandatory fields
Users
-
FirstName
-
LastName
-
Password
Groups
Email
User and Group mapping
The user and group mappings are listed in the tables below.
Table 184: User mapping
Id |
id |
userName |
primaryEmail |
Name.GivenName |
name.givenName |
Name.FamilyName |
name.familyName |
Name.Formatted |
name.fullName |
DisplayName |
name.fullName |
Emails[0].value |
primaryEmail |
Addresses[0].StreetAddress |
streetAddress |
Addresses[0].Locality |
locality |
Addresses[0].Region |
region |
Addresses[0].PostalCode |
postalcode |
PhoneNumbers[0].Value |
phones[0].value |
PhoneNumbers[0].Type |
phones[0].type |
Active |
suspended |
ExternalId |
externalIds.value |
Extension.Organization |
organizations.name |
Extension.Department |
organizations.department |
Extension.Division |
organizations.location |
Created |
creationTime |
Groups
Table 185: User mapping
Id |
id |
displayName |
name |
members.value |
groupMembers.id |
members.type |
groupMembers.type |
groupExtension.Email |
email |
groupExtension.Description |
description |
Connector limitations
-
Connector supports cursor based pagination even with any change at count in subsequent requests.
-
Created date is displayed for Users. Created date and Modified date are not displayed for Groups.
-
Group information of user is not displayed in user details.
-
The Email ID of Users and Groups to be created should be provided along with the domain name of target instance.
Google Workspace connector for Safeguard for Privileged Passwords
- The following OAuth scopes need to be authorized:
Connector limitations
Google Workspace (formerly GSuite) is a cloud computing, productivity, and collaboration tool. It includes the Google web applications Gmail, Drive, Hangouts, Calendar, and Docs. It also includes an interactive whiteboard. The enterprise version offers custom-domain email addresses, additional storage, and 24/7 phone and email support.
You must create a service account to access the Google Workspace services. For information on creating a service account, see Creating a service account in Google Workspace.
Supervisor configuration parameters
To configure the connector, following parameters are required:
-
Connector name
-
UserName
-
Private Key (Whole JSON content of private key file created for service account)
-
Target URL (Cloud application's instance URL used as targetURI in payload, for example: https://www.googleapis.com/admin/directory/v1)
- Customer Id
-
Instance DateTime Offset (refer Configuring additional datetime offset in connectors for more details).
Supported objects and operations
Users
Table 182: Supported operations for Users
Create User |
POST |
Update User |
PUT |
Delete User |
DELETE |
Get User |
GET |
Get All Users |
GET |
Get All Users with Pagination |
GET |
Groups
Table 183: Supported operations for Groups
Create Group |
POST |
Update Group |
PUT |
Delete Group |
DELETE |
Get Group |
GET |
Get All Groups |
GET |
Get All Groups with Pagination |
GET |
Mandatory fields
Users
-
FirstName
-
LastName
-
Password
Groups
Email
User and Group mapping
The user and group mappings are listed in the tables below.
Table 184: User mapping
Id |
id |
userName |
primaryEmail |
Name.GivenName |
name.givenName |
Name.FamilyName |
name.familyName |
Name.Formatted |
name.fullName |
DisplayName |
name.fullName |
Emails[0].value |
primaryEmail |
Addresses[0].StreetAddress |
streetAddress |
Addresses[0].Locality |
locality |
Addresses[0].Region |
region |
Addresses[0].PostalCode |
postalcode |
PhoneNumbers[0].Value |
phones[0].value |
PhoneNumbers[0].Type |
phones[0].type |
Active |
suspended |
ExternalId |
externalIds.value |
Extension.Organization |
organizations.name |
Extension.Department |
organizations.department |
Extension.Division |
organizations.location |
Created |
creationTime |
Groups
Table 185: User mapping
Id |
id |
displayName |
name |
members.value |
groupMembers.id |
members.type |
groupMembers.type |
groupExtension.Email |
email |
groupExtension.Description |
description |
-
Connector supports cursor based pagination even with any change at count in subsequent requests.
-
Created date is displayed for Users. Created date and Modified date are not displayed for Groups.
-
Group information of user is not displayed in user details.
-
The Email ID of Users and Groups to be created should be provided along with the domain name of target instance.
Google Workspace connector for Safeguard for Privileged Passwords
- The following OAuth scopes need to be authorized:
Google Workspace connector for Safeguard for Privileged Passwords
Google Workspace (formerly GSuite) is a cloud computing, productivity, and collaboration tool. It includes the Google web applications Gmail, Drive, Hangouts, Calendar, and Docs. It also includes an interactive whiteboard. The enterprise version offers custom-domain email addresses, additional storage, and 24/7 phone and email support.
You must create a service account to access the Google Workspace services. For information on creating a service account, see Creating a service account in Google Workspace.
Supervisor configuration parameters
To configure the connector, following parameters are required:
-
Connector name
-
UserName
-
Private Key (Whole JSON content of private key file created for service account)
-
Target URL (Cloud application's instance URL used as targetURI in payload, for example: https://www.googleapis.com/admin/directory/v1)
- Customer Id
-
Instance DateTime Offset (refer Configuring additional datetime offset in connectors for more details).
Supported objects and operations
Users
Table 182: Supported operations for Users
Create User |
POST |
Update User |
PUT |
Delete User |
DELETE |
Get User |
GET |
Get All Users |
GET |
Get All Users with Pagination |
GET |
Groups
Table 183: Supported operations for Groups
Create Group |
POST |
Update Group |
PUT |
Delete Group |
DELETE |
Get Group |
GET |
Get All Groups |
GET |
Get All Groups with Pagination |
GET |
Mandatory fields
Users
-
FirstName
-
LastName
-
Password
Groups
Email
User and Group mapping
The user and group mappings are listed in the tables below.
Table 184: User mapping
Id |
id |
userName |
primaryEmail |
Name.GivenName |
name.givenName |
Name.FamilyName |
name.familyName |
Name.Formatted |
name.fullName |
DisplayName |
name.fullName |
Emails[0].value |
primaryEmail |
Addresses[0].StreetAddress |
streetAddress |
Addresses[0].Locality |
locality |
Addresses[0].Region |
region |
Addresses[0].PostalCode |
postalcode |
PhoneNumbers[0].Value |
phones[0].value |
PhoneNumbers[0].Type |
phones[0].type |
Active |
suspended |
ExternalId |
externalIds.value |
Extension.Organization |
organizations.name |
Extension.Department |
organizations.department |
Extension.Division |
organizations.location |
Created |
creationTime |
Groups
Table 185: User mapping
Id |
id |
displayName |
name |
members.value |
groupMembers.id |
members.type |
groupMembers.type |
groupExtension.Email |
email |
groupExtension.Description |
description |
Connector limitations
-
Connector supports cursor based pagination even with any change at count in subsequent requests.
-
Created date is displayed for Users. Created date and Modified date are not displayed for Groups.
-
Group information of user is not displayed in user details.
-
The Email ID of Users and Groups to be created should be provided along with the domain name of target instance.
- The following OAuth scopes need to be authorized: