You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
:::image type="content" source="media/connect-google-workspace/new-project.png" alt-text="Screenshot that shows where to select a new project inside of your Google Workspace." lightbox="media/connect-google-workspace/new-project.png":::
89
+
89
90
90
91
1. In the **New project** page, name your project as follows: **Defender for Cloud Apps** and select **Create**.
91
92
92
-
93
+
:::image type="content" source="media/connect-google-workspace/3.jpg" alt-text="Screenshot that shows where to name your project inside of your Google Workspace." lightbox="media/connect-google-workspace/3.jpg":::
93
94
94
95
1. After the project is created, select the created project from the top ribbon. Copy the **Project number**, you'll need it later.
95
96
96
-
97
+
:::image type="content" source="media/connect-google-workspace/2.jpg" alt-text="Screenshot that shows where to copy the project number inside of your Google Workspace." lightbox="media/connect-google-workspace/2.jpg":::
97
98
98
99
1. In the navigation menu, go to **APIs & Services** > **Library**.
99
100
Enable the following APIs (use the search bar if the API isn't listed):
@@ -104,48 +105,48 @@ This section provides instructions for connecting Microsoft Defender for Cloud A
104
105
1. In the navigation menu, go to **APIs & Services** > **Credentials** and do the following steps:
:::image type="content" source="media/connect-google-workspace/6.jpg" alt-text="Screenshot that shows where to select create credentials inside of your Google Workspace." lightbox="media/connect-google-workspace/6.jpg":::
109
110
110
111
1. Select **Service Account**.
111
112
112
113
1.**Service account details**: Provide the name as *Defender for Cloud Apps* and description as *API connector from Defender for Cloud Apps to a Google workspace account*.
113
114
114
-
115
+
:::image type="content" source="media/connect-google-workspace/10.jpg" alt-text="Screenshot that shows where to provide service account details inside of your Google Workspace." lightbox="media/connect-google-workspace/10.jpg":::
115
116
116
117
1. Select **CREATE AND CONTINUE**.
117
118
118
119
1. Under **Grant this service account access to project**, for **Role** select **Project > Editor**, and then select **Done**.
119
120
120
-
121
+
:::image type="content" source="media/connect-google-workspace/11.jpg" alt-text="Screenshot that shows where to grant this service account access to project inside of your Google Workspace." lightbox="media/connect-google-workspace/11.jpg":::
121
122
122
123
1. In the navigation menu, return to **APIs & Services** > **Credentials**.
123
124
124
125
1. Under **Service Accounts**, locate and edit the service account you created earlier by selecting the pencil icon.
125
126
126
-
127
+
:::image type="content" source="media/connect-google-workspace/12.jpg" alt-text="Screenshot that shows where to select the service account inside of your Google Workspace." lightbox="media/connect-google-workspace/12.jpg":::
127
128
128
129
1. Copy the email address. You'll need it later.
129
130
130
131
1. Navigate to **KEYS** from the top ribbon.
131
132
132
-
133
+
:::image type="content" source="media/connect-google-workspace/13.jpg" alt-text="Screenshot that shows where to navigate to keys inside of your Google Workspace." lightbox="media/connect-google-workspace/13.jpg":::
133
134
134
135
1. From the **ADD KEY** menu, select **Create new key**.
135
136
136
137
1. Select **P12**, and then select **CREATE**. Save the downloaded file and the password required to use the file.
:::image type="content" source="media/connect-google-workspace/14.jpg" alt-text="Screenshot that shows where to create a key inside of your Google Workspace." lightbox="media/connect-google-workspace/14.jpg":::
139
140
140
141
1. In the navigation menu, go to **IAM & Admin** > **Service accounts**. Copy the **Client ID** assigned to the service account you created - you'll need it later.
:::image type="content" source="media/connect-google-workspace/16.jpg" alt-text="Screenshot that shows where to copy the client ID inside of your Google Workspace." lightbox="media/connect-google-workspace/16.jpg":::
143
144
144
145
1. Go to [admin.google.com](https://admin.google.com/) and in the navigation menu, go to **Security** > **Access and data control** > **API Controls**. Then do the following:
145
146
146
147
1. Under **Domain wide delegation**, select **MANAGE DOMAIN WIDE DELEGATION**.
:::image type="content" source="media/connect-google-workspace/17.jpg" alt-text="Screenshot that shows where to manage domain wide delegation inside of your Google Workspace." lightbox="media/connect-google-workspace/17.jpg":::
149
150
150
151
1. Select **Add new**.
151
152
@@ -185,7 +186,7 @@ This section provides instructions for connecting Microsoft Defender for Cloud A
185
186
1. In the **Instance name** window, give your connector a name. Then select **Next**.
186
187
1. In the **Add Google key**, fill in the following information:
187
188
188
-
189
+
:::image type="content" source="media/connect-google-workspace/cas-config-google-workspace.png" alt-text="Screenshot that shows the Google Workspace Configuration in Defender for Cloud Apps." lightbox="media/connect-google-workspace/cas-config-google-workspace.png":::
189
190
190
191
1. Enter the **Service account ID**, the **Email** that you copied earlier.
0 commit comments