Description
We are super excited to announce the rolled out of net new SailPoint Google Workspace SaaS Connector in Identity Security Cloud!
This is a SaaS Connector that does not require a Virtual Appliance to run. This SaaS connector provides identity management and governance to protect Google Workspace Accounts, Service Accounts, Domains and the associated Google Groups. This includes aggregation, provisioning, and the management of entitlements at the account level.
The Google Workspace SaaS connector can manage the following Google Cloud objects:
- Google Accounts(Google Workspace Identities + managed Cloud Identities only)
- Service Accounts
- Domains(Google Workspace or Cloud Identity Domain)
- Google Groups
What are the capabilities of Google Workspace SaaS connector?
High-level Capabilities
- Account Operations
- Load accounts - user, service account, domain
- Provision accounts - user, service account, domain
- Access Certifications (certification of entitlements connected to accounts)
- Password management - Google Workspace User/ Cloud Identity
- Enable and disable accounts - Google Workspace User/ Cloud Identity and service account
- Manages Delegated Administrators and Alias on Accounts
- Move User to Other Organization Unit
- Provision Custom Schema Attributes
- Group Entitlements
- Supported Google Workspace objects include:
- Groups
- Roles
- Supported GCP objects are:
- IAM Roles
- Projects
- Folders
- Resource Permissions
- Groups, roles, and resource permission for Google Workspace User/ Cloud Identity
- Resource permission for service account and domain
- Supported Google Workspace objects include:
Documentation
Note -
- If you are already using a VA based Google Workspace Connector, then there won’t be any changes or impact to it.
If you have any questions, please reach out to us, and we would be more than happy to help you in all possible ways.
Thanks!