Imports your Google Workspace security logs in Datadog. Upon enabling this integration, Datadog automatically starts pulling in logs for the following Google Workspace services:
Service
Description
Access Transparency
The Google Workspace Access Transparency activity reports return information about different types of Access Transparency activity events.
Admin
The Admin console application’s activity reports return account information about different types of administrator activity events.
Calendar
The Google Calendar application’s activity reports return information about various Calendar activity events.
Drive
The Google Drive application’s activity reports return information about various Google Drive activity events. The Drive activity report is only available for Google Workspace Business customers.
Gplus
The Google+ application’s activity reports return information about various Google+ activity events.
Groups
The Google Groups application’s activity reports return information about various Groups activity events.
Enterprise Groups
The Enterprise Groups activity reports return information about various Enterprise group activity events.
Login
The Login application’s activity reports return account information about different types of Login activity events.
Mobile
The Mobile Audit activity reports return information about different types of Mobile Audit activity events.
Rules
The Rules activity reports return information about different types of Rules activity events.
Token
The Token application’s activity reports return account information about different types of Token activity events.
User Accounts
The User Accounts application’s activity reports return account information about different types of User Accounts activity events
Setup
Installation
Follow the Google Workspace Admin SDK Reports API: Prerequisites documentation before configuring the Datadog-Google Workspace integration.
Note: Certain OAuth scopes may be required for setup. See the Google Workspace Admin SDK Authorize Requests documentation.
To configure the Datadog Google Workspace integration, click on the Connect a new Google Workspace domain button in your Datadog-Google Workspace integration tile and authorize Datadog to access the Google Workspace Admin API.
Note: Google Workspace security logs are on a 90 minute crawler because of a limitation in how often Google polls these logs on their side. Logs from this integration are only forwarded every 1.5-2 hours.
Metrics
The Google Workspace integration does not include any metrics.
Events
The Google Workspace integration does not include any events.
Service Checks
The Google Workspace integration does not include any Service Checks.