Documentation
Start typing to search…

List Privileges

Definition:

The "List Privileges" action retrieves a comprehensive list of all privileges associated with a specific customer in Google Directory. This action allows administrators to view the permissions assigned to various roles, helping manage access control and ensure proper user authorization. Key capabilities include fetching service-specific privileges, simplifying the process of auditing and updating permissions across the organization.


Example Use Cases:

  1. Access Control Review:
    Retrieve all privileges assigned to a customer to audit user access levels and ensure security policies are enforced.

  2. Role Management:
    Identify service-specific privileges to create or update custom admin roles with tailored permissions.

  3. Compliance Reporting:
    Generate reports of assigned privileges to support regulatory compliance and internal security audits.

  4. Troubleshooting Access Issues:
    Investigate user access issues by verifying the necessary privileges for key services in Google Workspace.

  5. Onboarding and Offboarding Processes:
    Ensure proper role assignment when onboarding new admins or revoking permissions during offboarding.


Inputs:

  1. Connection:

    This field connects your Google Directory account to the action, enabling secure access to retrieve privileges. Ensure you have the proper permissions to access the customer’s privilege data.

  2. Customer Id:

    The unique identifier for your Google Workspace customer account.

    How to Find:

    • Sign in to your Google Admin console using an administrator account.

    • From the Admin console Home page, go to Account settings.

    • Under Account settings, click on Profile to locate your Customer ID.

    • Alternate Option:

      You can use the alias my_customer to represent your account’s Customer ID. This is especially useful when managing your own organization without needing to look up the ID repeatedly.

    • Why It’s Important:

      This ID is necessary to fetch all privileges associated with the customer account. Without it, the system cannot retrieve privilege data.


Outputs:

  1. Privileges:

    This is a list of all privileges associated with the specified customer. Each privilege contains the following details:

    Service ID:

    The unique, obfuscated ID of the Google service that the privilege belongs to.

    Helps identify which Google service the privilege is linked with (e.g., Gmail, Drive, Admin Console).

    Privilege Name:

    The name of the privilege assigned to the customer for the corresponding service.

    Examples of privileges could be "USER_MANAGEMENT", "GROUP_SETTINGS", or "DOMAIN_SETTINGS".

    Useful for understanding what actions users with certain roles can perform in the Google Admin Console.

Example:

Updated 12 days ago