Question
How do I configure AD eDiscovery to collect from Google Drive?
Prerequisites
- A Google G Suite account for your organization
- Administrator account credentials for your organization's G Suite account
- The credentials to the Google Drive you wish to collect from
Answer
- Login to the G Suite Admin Console at https://admin.google.com/AdminHome with your organization's G Suite Administrator account
- Click "Security"
- Click "API reference"
- Check "Enable API access" and click "Save"
- Open the Google API Console at https://code.google.com/apis/console/
- Expand the upper-left menu, then select "API Manager" and "Credentials"
- When prompted to select or create a project, click "Create"
- Give your project a name and click "Create"
- When prompted, select "OAuth client ID" from the "Create credentials" drop-down
- Follow the prompts to Configure the OAuth consent screen and click "Save"
- For the Application Type, select "Other", give it a name, and click "Create"
- Take note of your Client ID and Client Secret
- Log into eDiscovery and go to Data Sources > Gmail
- Click the Add button in the upper-right
- Give the connector a Name
- Enter you Client ID and Client Secret, and click the "Google" button
- In the resulting browser window, sign in with the credentials to the Google Drive you wish to collect from
- When prompted, click "ALLOW" to allow the connector to audit emails of the users on your domain
- Copy the resulting Authorization Code, paste it into the connector details in eDiscovery, and click "OK"
Notes
- Separate Google Drive connectors are required for each user's Drive you wish to collect from.