You are here:
Connection for Google G Suite Users
The Google G Suite connection method is a combination of an OAuth 2.0 and a service account connection. This design is based on a method recommended by Google for connecting server to server.
| Requirement | Why it’s required | Benefit to you |
|---|---|---|
| Your Google admin must establish a service account for your G Suite account. To do so, Google admins generate a private key that includes access to your Google contacts and calendar API. A Salesforce admin then uploads the key to Salesforce. | After Salesforce admins upload the private key, the key provides Salesforce with an access token to your company’s Google account. This access is required for read, update, create, or delete access to Google contacts or events. See Also: |
After they’re uploaded, Google private keys are encrypted at rest. The private key signs the outbound sync requests sent from Salesforce. Requests can only be verified with the matching public key, possessed by your G Suite account. The generated access token is securely transferred from your Google account to Salesforce over a TLS connection. The token is encrypted. Every hour, the access token expires and a new token is transferred, always over a TLS connection. |
