I would like to know the exact set of permissions that Google account requires to be able to connect to G Suite for the principle of least privilege. At the moment, we have setup a google cloud identity and I am able to login but I cannot fetch any group from Google. We prefer not to grant this account with all the permissions and the articles from atlassian seem a bit deprecated since google has change a few things.
Do you have any advice on how to set this up?
Hi,
Here are the permissions required to connect and sync users/group via G suite:
You’re an organization admin for Atlassian
You’re an admin for your G Suite account with the following permissions:
Organization > Read
Users > Read
Groups
Domain Settings
https://support.atlassian.com/provisioning-users/docs/connect-to-g-suite/
You can also check the troubleshooting guide here: https://support.atlassian.com/provisioning-users/docs/g-suite-connection-troubleshooting/
Please note syncing specific groups from the G suite is enabled only with Atlassian Access subscription and not with free G suite:
https://confluence.atlassian.com/cloud/blog/2021/02/a-guide-to-decide-between-free-and-paid-versions-of-g-suite
If everything is in place and you still face issues with group sync, please open a support ticket.
Regards,
Jayant
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.