> For the complete documentation index, see [llms.txt](https://kb.rezonate.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://kb.rezonate.io/core-integrations/google-workspace/1-click-integration.md). # 1-Click Integration {% hint style="info" %} Google Workspace 1-Click Integration requires a privileged Google user for the process {% endhint %} With Google Workspace integration Rezonate is analyzing the Workspace environment, mapping inventory, scanning for Posture Issues, and hunting for threats. This integration has 2 Modes: * Read Only - This enables Identity mapping, Posture scanning, and ITDR Capabilities. * Read\Write - This enables all of the read capabilities, plus, the ability to remediate risks from the product automatically. To Integrate, browse to the Rezonate integrations screen, and select Google Workspace

Select Google Workspace from the second line, to the right.

Then, Select the preferred integration mode (Read-only or Read-Write)
You will see the following screen, click Advanced and Approve. ![](/files/bq451f5vDwciFs9WBqZ8)\
Clicking on the button will redirect you to the Google Consent screen. select your user and then after reviewing the required permissions click on the Allow button. You will be redirected to the platform and the integration process is completed.

Concent Screen - Rezonate Integration

### Additional permissions that are required for remediation support To support remediations executed from the Rezonate platform, additional permissions are required.\ These privileges allow the platform to Suspend\Delete users, enforce MFA, change group assignments, and perform additional actions as part of risk reduction features.
PermissionDescription
https://www.googleapis.com/auth/admin.directory.userGlobal scope for access to all user and user alias operations.
https://www.googleapis.com/auth/admin.directory.user.securityScope for access to all application-specific password, OAuth token, and verification code operations.
https://www.googleapis.com/auth/admin.directory.groupGlobal scope for access to all group operations, including group aliases and members.
https://www.googleapis.com/auth/admin.directory.group.memberScope for access to all group member roles and information operations
--- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://kb.rezonate.io/core-integrations/google-workspace/1-click-integration.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.