G Suite encompasses Google's set of collaboration and productivity tools such as: Gmail, Google Drive, Hangouts, Audits, Vault and more. 

Currently, Onna connects directly to GSuite's API to integrate with an organization's Gmail, Drive and Team Drives. 

Prior to being able to collect from G Suite a service account must be created for that G Suite to obtain an access key. Only a G Suite super admin can create a service account. The service account must have admin rights with User Management Admin and Services Admin permissions to be able to collect from both Drive and Gmail. 

Steps on how to create a service account are sent to Onna clients once their Onna account has been created. 

Integration Features

Files Collected

Gmail

  • Email Messages (metadata is embedded in email) 
  • Attachments (embedded in the email)
  • Labels from Gmail

Metadata collected

  • Email to
  • Email from
  • Email Bcc
  • Email Cc
  • Email ID
  • Email subject
  • Important
  • Label
  • Starred

Drive

  • Files in user accounts

Metadata collected

  • Title
  • Creators
  • File creation
  • File last modified
  • Path
  • Revision number
  • Folder

Audits

  • Monthly report of user actions 

Sync Modes

We currently support three sync modes - one-time, auto-sync, & auto-sync and archive.

  • One-time is a one-way sync that collects information only once.
  • Auto-sync means that Onna will perform a full sync first and will keep the data source and Onna in mirrored sync.
  • Auto-sync and archive means that Onna will perform a full sync and archive the information collected. Onna will then automatically sync and archive any new information after the original sync

Data Exports

Yes, you can export data and metadata in eDiscovery ready format. Load files are available in a dat, CSV, or custom text file.

How to Guide

Prior to running the G Suite collection in Onna, a super admin will need to create a service account for the Onna app to run. Steps on how to create a service account are sent to Onna clients once their Onna account has been created. 

Prior to receiving the instructions you can review how to create a service account by following the instructions provided by Google here. The following steps can only be taken by a super admin for the G Suite account. When enabling APIs for the project, you will need to select the Admin Directory API as well as the Gmail and GDrive APIs. 

These details can now be used to create the service account

  • use the option to furnish a new key and download the JSON
  • enable 'G Suite Domain-wide Delegation' for the Service account

More detailed steps are provided in the sent instructions.

Starting the collection in Onna  
First, create a workspace or navigate to the workspace you'd like to add your G Suite source too. Click on "Add source" and select Google Suite .

The next screen will ask for the following fields:

  • Source Name: name that describes the G Suite source
  • Company domain: usually the company website. The www. portion of the URL is not included. For example the domain can be onna.com
  • Admin's email 
  • Certificate: this is the JSON obtained while creating a service account for Onna

Once you've filled out the fields, select 'Connect'. The next screen will allow you to choose what you're syncing through G Suite.


For the following options:

  • Gmail Accounts: Will allow you to pick all or specific user's accounts from an organization. This will sync the entire contents of the account unless you choose to skip the spam and trash folders. NOTE: Onna cannot collect alias accounts, only individual mailboxes 
  • Google Drive & Team Drive Accounts: This option can be used to either pick all or specific user's drive accounts from an organization and/or select a specific team drive to be synced to the platform. Selecting a Drive account will sync the account's entire contents.  

Then you can choose the sync mode - whether one-time sync, autosync, or autosync & archive. 

Once you select one, you'll have the option to select users

For users you can:

  • Sync all user accounts by clicking 'Load users list'. By default all users are selected sync.
  • Select user accounts to sync by clicking 'Load users list' and selecting the ones you want
  • Entering the accounts manually by copying and pasting a list into a text box 

Once you've selected the account that you'd like to sync, scroll to the bottom and click 'Next'.  

You will be shown a list of team folders that exist within the account. You can select all or filter using the bar above the list. 

On this page you can also choose whether to sync future top level folders created in the future if your source is in auto-sync or auto-sync and archive. New team folders and any future subfolders belonging to the selected folder that are added will automatically be added to Onna. Once you've configured your collection options, select 'Finish' at the bottom of the page. After you click finish, all Gmail user accounts and team drives will be found within the GSuite source.

Users can see additional information on the Gmail accounts and/or Google Drive accounts that have been created by clicking on the information panel found on the top right hand corner while you are in the GSuite source.

Once the information panel appears scroll down until you reach the section labeled ‘Source contents’. Click on the arrow to the right of ‘Source contents’ and all user accounts created from the GSuite source will appear below the source contents section. The emails below has been blurred out.

Here you have the option to click audits to review the collection or processing logs for individual subsources. Clicking ‘Share’ will allow you to grant other Onna users access to view/manage individual subresource. 

Note: Only one unique global GDrive source will be created for team folders.

Filtering or searching across an individual account in GSuite 

By clicking on the 'Show Filters' button on the right hand side the current filters will appear on the left-hand side of the results screen

Filters can be configured to your preferences. Click on the gear icon at the bottom of the page to see the filters available. 

You can choose whether these are visible or not within your filters by clicking on the eye icon. You can also drag and drop them in your order of preference with the two bars on the left-hand side. Remember to save any configuration changes you've made by clicking 'Save' at the bottom of the page. In the below example we will enable the filters 'Source Type' & 'Source Name'.

You will now have the ability to filter based on the individual subsource name or source type.

In the event you need to query against an individual email account from GSuite navigate to the advanced search page. Select the property ‘Parent source name’ and condition ‘Contains’. A dropdown will appear in the next field with all available sources you have access to view including the subsources created by the GSuite source. Here you can select the subsources found under source contents. The email below has been blurred out.

To perform a search against an individual GDrive navigate to the advanced search page. Select the property ‘Parent source name’ and condition ‘Contains’. Select the name of the unique global GDrive source that was created. Add the property ‘Synced folder or label id in Source’ and condition ‘Contains. Finally add the user’s email address ID and 'Save & apply' the search.The email below has been blurred out.

You will now have the ability to view, filter, and export the results.

Note: The unique global GDrive source will have the same name as the admin that was used to configure the Gsuite collection & will have a Google Drive icon next to the source name under ‘Source Contents’ from the information panel.

G Suite FAQ

Does Onna collect from Vault?
Currently Onna does not but this functionality is on our roadmap. 

Can the G Suite integration be used to collect from Hangouts?
Currently, not however Onna has an integration to Hangouts that can be accessed with OAuth for a specific user's account. 

If the user has two factor authentication will their account be collected ?
Yes, the Super Admin will still have access to the user account regardless if two factor authentication was implemented.

Will suspended users be collected?
Suspended users will be collected as long as they were selected to be synced. We still collect the drive documents available as links in their email.

If set on autosync and archive do we collect changes made to a document or only first version of the document upon collection?
Only the version of the document that existed when the email is collected and processed.

Do we collect documents from links to team drives or just individual drives?
Links will be collected from individual drives and team drives. Note that the link for team drives will only be collected if the user has selected to notify the user.

Do we collect all GDrive files (PDFs, images) or only Google Docs?
All  Gdrive files are collected - PDFs, images, Google Docs, Google Sheets, Google Slides, etc. Google Doc Files will be collected as PDFs. Other files will be collected in original native format.

Did this answer your question?