Scopes required for Google Admin SDK Reports

I am trying to set up the Google Admin SDK Reports connector. The guide https://domo-support.domo.com/s/article/360043433273?language=en_US gets to the most important part of what 'scopes' you need then gets a bit vague. It does give 2 examples but using them, it doesnt work. I get error 'Failed to authenticate. Verify the credentials and try again. Access denied. You are not authorized to read activity records.'. Surely the relevant scopes required for this connector and its associated reports must be documented somewhere, I just cant find them.

Best Answer

  • JedP
    JedP Domo Employee
    edited June 26 Answer ✓

    Hi @SimonKing , I was able to find Googles Scope documentation that provides the scopes and the actions that the scope can preform. It looks like a pretty big list, so you might want to do a quick search for "SDK" to find the SDK specific scopes.

    Google Scope Documentation: https://developers.google.com/identity/protocols/oauth2/scopes

    If that doesnt solve the issue, then it is likely your permissions for the Google Account. The error you mention can happen when your role in Google doesnt have the correct access to the data for this method of connecting to it. You may want to check with your Google admin to ensure you have the "read activity records" permissions.

Answers

  • JedP
    JedP Domo Employee
    edited June 26 Answer ✓

    Hi @SimonKing , I was able to find Googles Scope documentation that provides the scopes and the actions that the scope can preform. It looks like a pretty big list, so you might want to do a quick search for "SDK" to find the SDK specific scopes.

    Google Scope Documentation: https://developers.google.com/identity/protocols/oauth2/scopes

    If that doesnt solve the issue, then it is likely your permissions for the Google Account. The error you mention can happen when your role in Google doesnt have the correct access to the data for this method of connecting to it. You may want to check with your Google admin to ensure you have the "read activity records" permissions.