Overview
Imports your Google Workspace security logs in Datadog. Upon enabling this integration, Datadog automatically starts pulling in logs for the following Google Workspace services:
| Service | Description |
|---|
| Access Transparency | The Google Workspace Access Transparency activity reports return information about different types of Access Transparency activity events. |
| Admin | The Admin console application’s activity reports return account information about different types of administrator activity events. |
| Calendar | The Google Calendar application’s activity reports return information about various Calendar activity events. |
| Drive | The Google Drive application’s activity reports return information about various Google Drive activity events. The Drive activity report is only available for Google Workspace Business customers. |
| Gplus | The Google+ application’s activity reports return information about various Google+ activity events. |
| Groups | The Google Groups application’s activity reports return information about various Groups activity events. |
| Enterprise Groups | The Enterprise Groups activity reports return information about various Enterprise group activity events. |
| Login | The Login application’s activity reports return account information about different types of Login activity events. |
| Mobile | The Mobile Audit activity reports return information about different types of Mobile Audit activity events. |
| Rules | The Rules activity reports return information about different types of Rules activity events. |
| Token | The Token application’s activity reports return account information about different types of Token activity events. |
| User Accounts | The User Accounts application’s activity reports return account information about different types of User Accounts activity events |
Setup
Installation
Follow the Google Workspace Admin SDK Reports API: Prerequisites documentation before configuring the Datadog-Google Workspace integration.
Note: Certain OAuth scopes may be required for setup. See the Google Workspace Admin SDK Authorize Requests documentation.
To configure the Datadog Google Workspace integration, click on the Connect a new Google Workspace domain button in your Datadog-Google Workspace integration tile and authorize Datadog to access the Google Workspace Admin API.
Data Collected
Logs
See the Google Workspace Admin SDK documentation for the full list of collected logs and their content.
Note: Google Workspace security logs are on a 90 minute crawler because of a limitation in how often Google polls these logs on their side. Logs from this integration are only forwarded every 1.5-2 hours.
Metrics
The Google Workspace integration does not include any metrics.
Events
The Google Workspace integration does not include any events.
Service Checks
The Google Workspace integration does not include any Service Checks.
Troubleshooting
Need help? Contact Datadog support.
