User directory: Google Workspace

You can also synchronize your users via Google Workspace as a user directory.

1. Configuration in Google
2. Configuration in Haiilo

Configuration in Google

To include Google Workspace as a user directory in Haiilo, the following must be configured in Google:

• The admin SDK is active
• A service account with domain-wide delegation of authority is created
• The service account credentials are exported as a "service-account.json" file
• A user with full access to users and groups, acting as a "service account user", exists
• The client (client ID) associated with the service account is added under.
  "Security > API Management > Domain-Wide Delegation" with the following scopes added:
  
  • https://www.googleapis.com/auth/admin.directory.user.readonly
  • https://www.googleapis.com/auth/admin.directory.group.readonly
  • https://www.googleapis.com/auth/admin.directory.group.member.readonly

Configuration in Haiilo

Within Haiilo, the configuration is initially very similar to the standard configuration. You can find it explained here.

For a Google Workspace user directory you only need to enter the attribute for username in the "User" tab. We recommend to use the "primaryEmail" here.

The rest of the configuration works exactly as you know it from the configuration of a user directory.