- Login to G-suite Admin account and navigate to Google developers console
- From the left pane, select Service Accounts.
- Click CREATE to create new project.
- Create a project
- On the New project window, provide Project name, Organization and Location a
- Click Create.
- Create a service account
- On the top pane, click to CREATE SERVICE ACCOUNT.
- On the service account details window, provide Service account name.
- Click CREATE then Continue to proceed
- On the top pane, click to CREATE SERVICE ACCOUNT.
- Create a key
- Click CREATE KEY
- Select the JSON format option
- Click CREATE
- A notification will be shown to let you know the json file is downloaded on your machine. Close the notification to proceed.
- Enable GSuite domain-wide delegation
- In the list of Service accounts, click the Actions menu (depicted as three dots) in front of the latest created service account. Click Edit to update settings
- Scroll down and select the check-box to Enable GSuite domain-wide delegation
- Provide Product name for the consent screen
- Click Save to update the changes
- In the list of Service accounts, click the Actions menu (depicted as three dots) in front of the latest created service account. Click Edit to update settings
- Copy Client ID
- On the service accounts window, scroll right to view the Domain-wide delegation column
- Click the View Client ID link
- Copy the Client ID
- Click Cancel to exit
- Register and authorize the API client to access data
- Navigate to the GSuite admin > Security settings
- Go to Advanced Settings > Authentication
- Click the Manage API client access link
- On the Manage API client access window, paste the client id which you have copied earlier.
- In the API scope, provide the string https://mail.google.com/
- Click the Authorize button.
- Navigate to the GSuite admin > Security settings
This completes the process of enabling the domain-wide delegation for GSuite.
10. Share the key with mithi via a helpdesk ticket to configure in LegacyFlo.