This article consists of the instructions to set up HDE Email DLP with the usage of OpenID Connect with G Suite.
Step 1 - Log in to your Google Admin Console.
Step 2 - In the Admin Console interface, click on "Apps".
Step 3 - In "Apps" interface, click "Additional Google services".
Step 4 - Please click "Google Developers Console".
Step 5 - Please turn on Google Developers Console for everyone as shown below.
Step 6 - Click "TURN ON FOR EVERYONE". It is to allow you to create new project in the following steps.
Step 7 - While logged in with a Google administrator account, log on to “https://console.developers.google.com/project” and click "Create project".
Step 8 - Please name the new project "HDE One Email DLP".
Click "Edit" to edit the project ID. Please enter "mo-yourdomain-hdemail-jp" with your actual domain name replacing the "yourdomain" in the sample below.
Step 9 - After the project creation, in the project Dashboard, click on the "Use Google APIs".
Step 10 - In the project API interface, in "API" tab, click on "Credentials" and click on "OAuth consent screen" to input "Email address", "Product name shown to users" and "Homepage URL" accordingly as shown below. Click "Save" after the details are filled in.
Step 11 - After saving the OAuth consent screen settings, switch the the "Credentials" tab and click on "Add credentials". Select "OAuth 2.0 client ID".
Step 13 - After the creation of the client ID, go to the "Credentials" tab and look for the newly created client ID and click on the download button to download the client secret as a .json as shown below. Once you have obtained the .json file, contact our support staff and provide us the downloaded .json file so we could upload it to our server in order to proceed with the final step to complete the entire setup.