Chat now with support

Get Live Help
Complete Registration

Sign In

Request Pricing

Contact Sales

Identity Manager 9.2.1 - Administration Guide for Connecting to Google Workspace

Table of Contents

Mapping a Google Workspace environment in One Identity Manager

Architecture overview One Identity Manager users for managing a Google Workspace customer Configuration parameters

Synchronizing a Google Workspace customer

Setting up initial synchronization of a Google Workspace customer

Users and permissions for synchronizing with a Google Workspace customer

Setting up the necessary permissions for accessing the Google Workspace customer

Setting up the Google Workspace synchronization server

System requirements for the Google Workspace synchronization server Installing the One Identity Manager Service

Creating a synchronization project for initial synchronization of a Google Workspace customer

Information required for setting up a synchronization project Creating an initial synchronization project for a Google Workspace customer

Configuring the synchronization log

Customizing the synchronization configuration for Google Workspace

Configuring synchronization with Google Workspace customers Configuring synchronization of different Google Workspace customers Updating schemas Speeding up synchronization with revision filtering Advanced settings for the system connection to Google Workspace

Editing connection parameters in the variable set Editing target system connection properties

Configuring the provisioning of memberships Configuring single object synchronization Accelerating provisioning and single object synchronization

Running synchronization

Starting synchronization Displaying synchronization results Deactivating synchronization Synchronizing single objects

Tasks following synchronization

Post-processing outstanding objects Adding custom tables to the target system synchronization Managing Google Workspace user accounts through account definitions

Troubleshooting Ignoring data error in synchronization Pausing handling of target system specific processes (Offline mode)

Managing Google Workspace user accounts and identities

Account definitions for Google Workspace user accounts

Creating account definitions Editing account definitions Main data for account definitions Editing manage levels Creating manage levels Assigning manage levels to account definitions Main data for manage levels Creating mapping rules for IT operating data Entering IT operating data Modify IT operating data Assigning Google Workspace account definitions to identities

Assigning Google Workspace account definitions to departments, cost centers, and locations Assigning account definitions to business roles Assigning account definitions to all identities Assigning account definitions directly to identities Assigning account definitions to system roles Adding account definitions in the IT Shop

Assigning Google Workspace account definitions to target systems Deleting Google Workspace account definitions

Assigning identities automatically to Google Workspace user accounts

Editing search criteria for automatic identity assignment Finding identities and directly assigning them to user accounts Changing the manage level in Google Workspace user accounts Assigning account definitions to linked user accounts

Manually linking identities to Google Workspace user accounts Supported user account types

Default user accounts Administrative user accounts

Providing administrative user accounts for one identity Providing administrative user accounts for several people

Privileged user accounts

Specifying deferred deletion for Google Workspace user accounts

Login credentials for Google Workspace user accounts

Password policies for Google Workspace user accounts

Predefined password policies Using password policies Editing password policies Creating password policies General main data of password policies Policy settings Character classes for passwords Custom scripts for password requirements

Checking passwords with a script Generating passwords with a script

Editing the excluded list for passwords Checking passwords Testing the generation of passwords

Initial password for new Google Workspace user accounts Email notifications about login data

Managing Google Workspace entitlement assignments

Assigning Google Workspace entitlements to user accounts in One Identity Manager

Prerequisites for indirect assignment of Google Workspace entitlements to Google Workspace user accounts Assigning Google Workspace entitlements to departments, cost centers, and locations Assigning Google Workspace entitlements to business roles Adding Google Workspace entitlements to system roles Adding Google Workspace entitlements to the IT Shop Assigning Google Workspace user accounts directly to an entitlement Assigning Google Workspace entitlements directly to a user account Assigning Google Workspace groups directly to a customer Assigning Google Workspace customers directly to a group

Effectiveness of Google Workspace entitlement assignments Inheritance of Google Workspace entitlements based on categories Assigning Google Workspace groups to an external user Assigning external users to a Google Workspace group Overview of all assignments

Mapping Google Workspace objects in One Identity Manager

Google Workspace customers

Creating Google Workspace customers Editing main data of Google Workspace customers General main data of Google Workspace customers Google Workspace customer address data Defining categories for the inheritance of Google Workspace entitlements Additional tasks for managing Google Workspace customers

Displaying the Google Workspace customer overview Editing the synchronization project for a Google Workspace customer

Google Workspace user accounts

Creating Google Workspace user accounts Editing main data of Google Workspace user accounts General main data of Google Workspace user accounts Password data for Google Workspace user accounts Phone numbers for Google Workspace user accounts Addresses for Google Workspace user accounts Email addresses for Google Workspace user accounts External IDs for Google Workspace user accounts Instant messenger data for Google Workspace user accounts User details for Google Workspace user accounts Relationships of Google Workspace user accounts Websites of Google Workspace user accounts Additional tasks for managing Google Workspace user accounts

Displaying the Google Workspace user account overview Assigning extended properties to Google Workspace user accounts Moving Google Workspace user accounts to a different organization

Locking Google Workspace user accounts Deleting and restoring Google Workspace user accounts Transferring user data to a different Google Workspace user account

Google Workspace groups

Creating Google Workspace groups Entering main data of Google Workspace groups General main data of Google Workspace groups Additional settings for Google Workspace groups Additional tasks for managing Google Workspace groups

Displaying the Google Workspace group overview Assigning extended properties to Google Workspace groups Assigning group managers to Google Workspace groups Assigning group owners to Google Workspace groups Assigning Google Workspace groups to Google Workspace groups

Deleting Google Workspace groups

Google Workspace products and SKUs

Editing main data of Google Workspace products and SKUs General main data of Google Workspace products and SKUs Additional tasks for managing Google Workspace products and SKUs

Displaying the Google Workspace products and SKUs overview Assigning extended properties to Google Workspace products and SKUs

Google Workspace organizations

Creating Google Workspace organizations Editing main data of Google Workspace organizations General main data of Google Workspace organizations Additional tasks for managing Google Workspace organizations

Displaying the Google Workspace organizations overview Moving Google Workspace organizations

Deleting Google Workspace organizations

Google Workspace domains Google Workspace domain aliases Google Workspace admin roles

Creating Google Workspace admin roles Editing main data of Google Workspace admin roles General main data of Google Workspace admin roles Additional tasks for managing Google Workspace admin roles

Overview of Google Workspace admin roles Assigning admin privileges to Google Workspace admin roles

Deleting Google Workspace admin roles

Google Workspace admin privileges

Display main data of Google Workspace admin privileges Additional tasks for managing Google Workspace admin privileges

Overview of Google Workspace admin privileges Assigning Google Workspace admin privileges to admin roles

Google Workspace admin role assignments

Creating Google Workspace admin role assignments Additional tasks for managing Google Workspace admin role assignments

Overview of Google Workspace admin role assignments Assigning extended properties to Google Workspace admin role assignments

Deleting Google Workspace admin role assignments

Google Workspace external email addresses

Assigning Google Workspace external email addresses to customers Additional tasks for managing Google Workspace external email addresses

Displaying the Google Workspace external email address overview

Deleting Google Workspace external email addresses

Reports about Google Workspace objects

Handling of Google Workspace objects in the Web Portal Basic configuration data for managing a Google Workspace customer

Job server for Google Workspace-specific process handling

Editing Google Workspace Job servers General main data of Job servers Specifying server functions

Target system managers for Google Workspace customers

Troubleshooting the connection to a Google Workspace customer

Newly added Google Workspace user accounts are marked as outstanding

Configuration parameters for managing a Google Workspace environment Default project template for Google Workspace API scopes for the service account Processing methods of Google Workspace system objects Special features in the assignment of Google Workspace groups

Google Workspace admin role assignments

Administrative privileges can be limited to individual organizations. To enable this, assign the admin roles to organizations. User accounts that are assigned this type of admin role can use the related administrative privileges only in the assigned organization.

Creating Google Workspace admin role assignments

To assign an organization to an admin role

In the Manager, select the Google Workspace > Admin role assignments category.
Click in the result list.
On the main data form, edit the assignment.
- Select the required admin role from the Admin role menu.
- Select the required organization from the Google Workspace organization menu.
Save the changes.

Additional tasks for managing Google Workspace admin role assignments

After you have entered the main data, you can run the following tasks.

Task	Theme
Google Workspace admin role assignment overview	Overview of Google Workspace admin role assignments
assign user accounts	Assigning Google Workspace user accounts directly to an entitlement
Assigning extended properties	Assigning extended properties to Google Workspace admin role assignments
Assigning system roles	Adding Google Workspace entitlements to system roles
Assign business roles	Assigning Google Workspace entitlements to business roles
Assign organizations	Assigning Google Workspace entitlements to departments, cost centers, and locations
Adding to the IT Shop	Adding Google Workspace entitlements to the IT Shop
Synchronize object	Synchronizing single objects

Overview of Google Workspace admin role assignments

You use this task to obtain an overview of the most important information for an admin role assignment.

To obtain an overview of admin role assignments

In the Manager, select the Google Workspace > Admin role assignments category.
Select the admin role assignment in the result list.
Select the Google Workspace admin role assignment overview task.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating

© ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center