Chat now with support

Get Live Help
Complete Registration

Sign In

Request Pricing

Contact Sales

Identity Manager 8.1.5 - Administration Guide for Connecting to G Suite

Table of Contents

Mapping G Suite in One Identity Manager

Architecture overview One Identity Manager users for managing G Suite Configuration parameter

Synchronizing G Suite

Setting up initial synchronization of G Suite

Users and permissions for synchronizing with G Suite

Setting up required permissions for accessing G Suite

Setting up the G Suite synchronization server

System requirements for the G Suite synchronization server Installing the One Identity Manager Service

Creating a synchronization project for initial synchronization of G Suite

Information required for setting up a synchronization project Creating an initial synchronization project for G Suite

Configuring the synchronization log

Adjusting the synchronization configuration for G Suite environments

Configuring synchronization in G Suite Configuring synchronization of different customers Updating schemas Speeding up synchronization with revision filtering Advanced settings for system connection to G Suite

Editing connection parameters in the variable set Editing target system connection properties

Configuring the provisioning of memberships Configuring single object synchronization Accelerating provisioning and single object synchronization

Executing synchronization

Starting synchronization Displaying synchronization results Deactivating synchronization Synchronizing single objects

Tasks after a synchronization

Post-processing outstanding objects Adding custom tables to the target system synchronization Managing user accounts through account definitions

Troubleshooting

Managing G Suite user accounts and employees

Account definitions for G Suite user accounts

Creating account definitions Editing account definitions Master data for account definitions Editing manage levels Creating manage levels Master data for manage levels Creating mapping rules for IT operating data Entering IT operating data Modify IT operating data Assigning account definitions to employees

Assigning account definitions to departments, cost centers, and locations Assigning account definitions to business roles Assigning account definitions to all employees Assigning account definitions directly to employees Assigning account definitions to system roles Adding account definitions in the IT Shop

Assigning account definitions to target systems Deleting account definitions

Automatic assignment of employees to G Suite user accounts

Editing search criteria for automatic employee assignment

Finding employees and directly assigning them to user accounts

Changing the manage level in G Suite user accounts Assigning account definitions to linked user accounts

Manually linking employees to G Suite user accounts Supported user account types

Default user accounts Administrative user accounts

Providing administrative user accounts for one employee Providing administrative user accounts for several employees

Privileged user accounts

Provision of login information for G Suite user accounts

Password policies for G Suite user accounts

Predefined password policies Using password policies Editing password policies Creating password policies General master data for password policies Policy settings Character classes for passwords Custom scripts for password requirements

Script for checking passwords Script for generating a password

Editing the excluded list for passwords Checking passwords Testing the generation of passwords

Initial password for new G Suite user accounts Email notifications about login data

Managing G Suite entitlement assignments

Assigning G Suite entitlements to user accounts in One Identity Manager

Assigning G Suite entitlements to departments, cost centers, and locations Assigning G Suite entitlements to business roles Adding G Suite entitlements to system roles Adding G Suite entitlements to the IT Shop Assigning G Suite user accounts directly to an entitlement Assigning G Suite entitlements directly to a user account Assigning G Suite groups directly to a customer Assigning G Suite customers directly to a group

Effectiveness of G Suite entitlement assignments Inheritance of G Suite entitlements based on categories Overview of all assignments

Mapping of G Suite objects in One Identity Manager

G Suite customers

Creating G Suite customers Editing master data for G Suite customers General master data for G Suite customers G Suite customer address data Defining categories for the inheritance of G Suite entitlements Additional tasks for managing G Suite customers

Overview of a G Suite customer Editing the synchronization project for a G Suite customer

G Suite user accounts

Creating G Suite user accounts Editing master data for G Suite user accounts General master data for G Suite user accounts Password data for G Suite user accounts Phone numbers for G Suite user accounts Addresses for G Suite user accounts Email addresses for G Suite user accounts External IDs for G Suite user accounts Instant messenger data for G Suite user accounts User details for G Suite user accounts Relationships of G Suite user accounts Websites of G Suite user accounts Additional tasks for managing G Suite user accounts

Overview of G Suite user accounts Assigning extended properties to G Suite user accounts Moving G Suite user accounts to a different organization

Locking G Suite user accounts Deleting and restoring G Suite user accounts Transferring user data to a different G Suite user account

Creating G Suite groups Entering master data for G Suite groups General master data for G Suite groups Additional settings for G Suite groups Additional tasks for managing G Suite groups

Overview of G Suite groups Assigning extended properties to G Suite groups Assigning group managers Assigning group owners Assigning G Suite groups to G Suite groups

Deleting G Suite groups

G Suite products and SKUs

Editing master data for G Suite products and SKUs General master data for G Suite products and SKUs Additional tasks for managing G Suite products and SKUs

Overview of G Suite products and SKUs Assigning extended properties to G Suite products and SKUs

G Suite organizations

Creating G Suite organizations Editing master data for G Suite organizations General master data for G Suite organizations Additional tasks for managing G Suite organizations

Overview of G Suite organizations Moving G Suite organizations

Deleting G Suite organizations

G Suite domains G Suite domain aliases G Suite admin roles

Creating G Suite admin roles Editing master data for G Suite admin roles General master data for G Suite admin roles Additional tasks for managing G Suite admin roles

Overview of G Suite admin roles Assigning admin privileges to G Suite admin roles

Deleting G Suite admin roles

G Suite admin privileges

Display master data for G Suite admin privileges Additional tasks for managing G Suite admin privileges

Overview of G Suite admin privileges Assigning G Suite admin privileges to admin roles

G Suite admin role assignments

Creating G Suite admin role designations Additional tasks for managing G Suite admin role assignments

Overview of G Suite admin role assignments Assigning user accounts to G Suite admin role designations

Deleting G Suite admin role assignments

Reports about G Suite objects

Handling of G Suite objects in the Web Portal Basic data for managing G Suite

Job server for G Suite-specific process handling

Editing G Suite Job servers General master data for Job servers Specifying server functions

Target system managers for customers

Troubleshooting the connection to a G Suite environment

Newly added G Suite user accounts are marked as outstanding

Configuration parameters for managing G Suite Default project templates for G Suite API scopes for the service account Processing G Suite system objects Special features in the assignment of G Suite groups About us

Editing password policies

Provision of login information for G Suite user accounts > Password policies for G Suite user accounts > Editing password policies

To edit a password policy

In the Manager, select the G Suite | Basic configuration data | Password policies category.
In the result list, select the password policy.
Select the Change master data task.
Edit the password policy's master data.
Save the changes.

Detailed information about this topic

Related topics

Creating password policies

Creating password policies

Provision of login information for G Suite user accounts > Password policies for G Suite user accounts > Creating password policies

To create a password policy

In the Manager, select the G Suite | Basic configuration data | Password policies category.
Click in the result list.
On the master data form, enter the master data for the password policy.
Save the changes.

Detailed information about this topic

Related topics

Editing password policies

General master data for password policies

Provision of login information for G Suite user accounts > Password policies for G Suite user accounts > General master data for password policies

Enter the following master data for a password policy.

Table 19: Master data for a password policy
Property	Meaning
Display name	Password policy name. Translate the given text using the button.
Description	Text field for additional explanation. Translate the given text using the button.
Error Message	Custom error message generated if the policy is not fulfilled. Translate the given text using the button.
Owner (Application Role)	Application roles whose members can configure the password policies.
Default policy	Mark as default policy for passwords. NOTE: The One Identity Manager password policy is marked as the default policy. This password policy is applied if no other password policy can be found for employees, user accounts, or system users.

Policy settings

Provision of login information for G Suite user accounts > Password policies for G Suite user accounts > Policy settings

Define the following settings for a password policy on the Password tab.

Table 20: Policy settings
Property	Meaning
Initial password	Initial password for newly created user accounts. The initial password is used if a password is not entered when you create a user account or if a random password is not generated.
Password confirmation	Reconfirm password.
Minimum Length	Minimum length of the password. Specify the number of characters a password must have.
Max. length	Maximum length of the password. Specify the number of characters a password can have. The maximum permitted value is 256.
Max. errors	Maximum number of errors. Set the number of invalid passwords attempts. Only taken into account when logging in to One Identity Manager. This data is only taken into account if the One Identity Manager login was through a system user or employee based authentication module. If a user has reached the number of maximum failed logins, the employee or system user can no longer log in to One Identity Manager. You can use the Password Reset Portal to reset the passwords of employees and system users who have been blocked. For more detailed information, see the One Identity Manager Web Portal User Guide.
Validity period	Maximum age of the password. Enter the length of time a password can be used before it expires.
Password history	Enter the number of passwords to be saved. If, for example, a value of 5 is entered, the user's last five passwords are stored.
Minimum password strength	Specifies how secure the password must be. The higher the password strength, the more secure it is. The value 0 means that the password strength is not tested. The values 1, 2, 3 and 4 specify the required complexity of the password. The value 1 represents the lowest requirements in terms of password strength. The value 4 requires the highest level of complexity.
Name properties denied	Specifies whether name properties are permitted in the password. If this option is set, name properties are not permitted in passwords. The values of these columns are taken into account if the Contains name properties for password check option is set. In the Designer, adjust this option in the column definition. For more detailed information, see the One Identity Manager Configuration Guide.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating

© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center