Skip to main content
日本語 简体中文 繁體中文

[Email DLP] Group Synchronization Settings in Google Workspace

Target

  • Customers who want to sync group information from Google Workspace to Email DLP

Purpose

  • This article explains the required settings to sync group information from Google Workspace to Email DLP.

Notes

  1. A Google Workspace super admin account is required to perform the procedure.
  2. Before starting the procedure, you must enable the directory in Google Workspace.
    Turn the Directory on or off (external link)
  3. To view the actual screens or make changes to the settings, Email DLP admin privileges are required.
    For instructions on how to set up admin privileges, please refer to the following article.
    How to set Email DLP admin privileges
  4. For instructions on how to access the Administration, please refer to the following article.
    How to access the HENNGE Email DLP admin console
  5. You cannot set approvers for address groups created via group sync. Therefore, these groups cannot be used in filter settings for rule groups that include approval actions.
  6. The content of this article is based on the product as of August 2024 and is subject to change without notice.

Procedure

  1. Access the Google Admin console for Google Workspace.
  2. From the menu, click Security > Access and data control > API controls.
  3. Click Manage domain-wide delegation.
  4. Click Add new in the API clients column.

  5. On the Add a new client ID screen, enter the following values.
    Client ID

    102937852759751394212

    OAuth scopes (comma-delimited)

    https://www.googleapis.com/auth/admin.directory.group.readonly, https://www.googleapis.com/auth/admin.directory.user.readonly
  6. Confirm that the information for the added API client is displayed on the screen.

  7. In the Email DLP Administration, go to General Settings > Integrations from the left menu.

    jp_1_groupsync.png

  8. Click the Authorize button for Group Sync with Google Workspace.

  9. Enter the email address of the Google Workspace super admin and click Next.

    jp_3_groupsync.png

  10. When the status shows as enabled on the Integrations page, the integration is complete.

    jp_4_groupsync.png

    * Please make sure to complete steps 1–7 before performing the integration steps in the Email DLP Administration.
    If you proceed without completing up to step 7, you will see an error message like the one below.

    jp_3_groupdsync.png

If you want to change the integrated Google Workspace super admin account

Follow steps 7 and onward in the "Procedure" section, and in step 9, enter the email address of the new super admin.