If your Google Workspace plan does not support the Cloud Identity API, you mustĮnsure that your RBAC does not depend on transitive group memberships. Google Admin Console, which relies on the Cloud Identity API. To troubleshoot whether your Google Workspace plan supports querying transitive Subdomain than the user's will be ignored. Any group registered on a different domain or If these credentials do not exist, Teleport will fetch credentials for theĭirectory API instead, and will use this API to list the user's groups within The OIDC connector maps a user's roles to the Google Workspace groups they belong to. We currently support OIDC connector versions v2 and v3. Guide, but for now, you should ensure that your Google Workspace plan allows you We will show you how to configure the connector later in the Teleport's OIDC connector uses Google Workspace's APIs differently depending The Directory API is available for all Google Groups in their Google Workspace domain, but does not enable them to query The Google Workspace Directory API allows administrators to list users and These API methods are only usable for users belonging to Membership to a specific group by calling methods within the Google WorkspaceĬloud Identity API. Google Workspace service accounts can determine whether a user has a transitive Group is nested within a parent group, so that a member of a child group is also In Google Workspace, transitive group membership takes place when a user isĪ member of one group by virtue of being in another group. How Google Workspace APIs differ by service level Teleport supports your current Google Workspace setup. In this section, we will explain how to determine if Teleport's Google Workspace integration works differently depending on your Creating a service account for Teleport to fetch the additional Google GroupsĮnsure your Google Workspace plan is correct.Creating an OAuth client ID to allow Google Workspace users to log in to your.Configuring OAuth consent for the new project.Creating a new project on Google Cloud Platform.Determining whether your Google Workspace plan is correct for your Teleport.Please use the latest version of Teleport Enterprise documentation. Authenticate to Grafana with Teleport SAMLĬloud is not available for Teleport v.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |