The following guide will help you collect the necessary details from Google Admin Console (GAC) to successfully setup a new integration between GAC and FMX.
This includes the following information:
- Client ID
- Client Secret
- Customer ID
Step 1: Create a Google Cloud Project
First, you will need to create a new project to represent this integration.
- In the Google Cloud console, go to Menu IAM & AdminCreate a Project.
- In the Project Name field, enter a descriptive name for your project.
- In the Location field, click Browse to display potential locations for this project. Then, click Select.
- Click Create.
- Your project is created within a few minutes.
NOTE: If you can't find your Google Workspace organization, this means you aren't signed in to a Google Workspace account.
Step 2: Enable the Admin SDK API
- In the Google Cloud console, go to Menu More productsGoogle WorkspaceProduct Library then search for and open Admin SDK API.
- Click Enable.
Step 3: Configure OAuth Consent Screen
- In the Google Cloud console, go to Menu APIs & ServicesOAuth consent screen.
- For User Type, select Internal.
- Add required information like App name and user support email.
- For Developer contact information, add dev-team@gofmx.com.
- Click Save and Continue.
- Within the Scopes section, click Add or Remove Scopes.
- Search for the needed scopes (see below) and click the checkbox for each desired item.
- Click Update once all the desired scopes have been added.
- Click Save and Continue.
Below are all the required scopes for the GAC to FMX integration:
.../auth/admin.directory.orgunit.readonly
.../auth/admin.directory.user.readonly
.../auth/admin.directory.device.chromeos.readonly
.../auth/admin.directory.device.mobile.readonly
.../auth/admin.directory.userschema.readonly
Step 4: Create OAuth Client ID Credentials
- In the Google Cloud console, go to Menu APIs & ServicesCredentials.
- Click Create Credentials and select OAuth client ID.
- For Application type select Web application.
- In the Name field, enter a descriptive name for these credentials.
- Under Authorized redirect URIs click Add URI.
- Add the following URI: https://oauth2.prismatic.io/callback.
- Click Create.
- Copy the Client ID and Client Secret and add them to the configuration.
Step 5: Retrieve GAC Customer ID
When you sign up for a Google Workspace or Cloud Identity, your account is assigned a unique customer ID. You can look up this ID in your Admin console.
- Make sure you're signed in to an administrator account.
- In the Admin console, go to Menu AccountAccount settingsProfile.
- Next to Customer ID, find and copy your organization's unique ID to add to the configuration.