Integrating SailPoint with Google Workspace

Formerly G Suite

Revised Date: 15 March 2024

Google Workspace is the new name for G Suite. This guide refers to the connector as "Google Workspace" except where "G Suite" is still utilized, such as in some user interface configurations.


If you want to enable additional cloud governance features (for example, visualization of effective access) for your CGP Cloud Infrastructure, you must have a CIEM license. If you already have a CAM license, no additional license purchase is required. Contact your SailPoint Customer Success Manager to request access and for more information.

For more information on the additional features supported with cloud governance, refer to the table on the Supported Features page.

The SailPoint Google Workspace connector manages accounts, groups, and roles from all available domains of Google Workspace for Business, Education, or ISP as long as the service account provided in the application configuration has sufficient access to those domains.

It also consists of a number of features like managing Gmail Delegates for accounts, moving a user from one Organizational Unit to another, and managing a large number of account and group attributes.

The Google Workspace connector:

  • Uses the standard Exponential Back Off strategy recommended by Google to handle errors during aggregation.

  • Is enhanced to manage Identity and Access Management (IAM) in the Google Cloud Platform (GCP).

    Google Cloud Platform is a suite of public cloud computing services offered by Google. The platform includes a range of hosted services for compute, storage, and application development that run on Google hardware.

  • Manages accounts, groups, and roles for the GCP organization infrastructure. The connector consists of a number of features; such as multiple user type management, user access across multiple resources (IAM policy) of the resource.

To view the latest features, enhancements, or fixes, refer to the SaaS Release Notes page.