This document lists the events and parameters for
Security Settings
Admin Audit activity events. You can retrieve these events by
calling Activities.list()
with applicationName=admin
.
Security Settings
Events of this type are returned with type=SECURITY_SETTINGS
.
(Context-aware access) Access level assignment changed for an app
CHANGE_CAA_APP_ASSIGNMENTS
APPLICATION_
string
The application's name.
CAA_
string
CAA access levels new.
CAA_
string
CAA access levels old.
CAA_
string
CAA access levels new.
CAA_
string
CAA access levels old.
CAA_
string
CAA assignments new.
CAA_
string
CAA assignments old.
CAA_
string
CAA enforcement endpoints new. Possible values:
-
CAA_WEB_VERSION
CAA enforcement endpoints value type - web version. -
CAA_WEB_VERSION_AND_1P_OAUTH_CLIENTS
CAA enforcement endpoints value type - web version and 1p oauth clients. -
CAA_WEB_VERSION_AND_1P_OAUTH_CLIENTS_AND_APIS
CAA enforcement endpoints value type - web version and 1p oauth clients and APIs (without exemptions). -
CAA_WEB_VERSION_AND_1P_OAUTH_CLIENTS_AND_APIS_WITH_EXEMPTION
CAA enforcement endpoints value type - web version and 1p oauth clients and APIs (with exemptions). -
CAA_WEB_VERSION_AND_APIS
CAA enforcement endpoints value type - web version and APIs (without exemptions). -
CAA_WEB_VERSION_AND_APIS_WITH_EXEMPTION
CAA enforcement endpoints value type - web version and APIs (with exemptions). -
WEB_APP
CAA enforcement endpoint type - web app. -
WEB_APP_AND_1P_OAUTH_CLIENTS
CAA enforcement endpoint type - web app and 1p oauth clients.
CAA_
string
CAA enforcement endpoints old. Possible values:
-
CAA_WEB_VERSION
CAA enforcement endpoints value type - web version. -
CAA_WEB_VERSION_AND_1P_OAUTH_CLIENTS
CAA enforcement endpoints value type - web version and 1p oauth clients. -
CAA_WEB_VERSION_AND_1P_OAUTH_CLIENTS_AND_APIS
CAA enforcement endpoints value type - web version and 1p oauth clients and APIs (without exemptions). -
CAA_WEB_VERSION_AND_1P_OAUTH_CLIENTS_AND_APIS_WITH_EXEMPTION
CAA enforcement endpoints value type - web version and 1p oauth clients and APIs (with exemptions). -
CAA_WEB_VERSION_AND_APIS
CAA enforcement endpoints value type - web version and APIs (without exemptions). -
CAA_WEB_VERSION_AND_APIS_WITH_EXEMPTION
CAA enforcement endpoints value type - web version and APIs (with exemptions). -
WEB_APP
CAA enforcement endpoint type - web app. -
WEB_APP_AND_1P_OAUTH_CLIENTS
CAA enforcement endpoint type - web app and 1p oauth clients.
GROUP_
string
Group Name.
MODE
string
CAA Access Level Assignment mode. Possible values:
-
ACTIVE
CAA assignment mode - active. -
MONITOR
CAA assignment mode - monitor.
ORG_
string
The organizational unit (OU) name (path).
TARGET_
string
CAA Target Entity name.
TARGET_
string
CAA Target Entity type. Possible values:
-
GROUP
A distribution entity label for a Google group. -
ORG_UNIT
A distribution entity label for an organizational unit.
GET https://admin.googleapis.com
For {TARGET_ENTITY_TYPE}
[ {TARGET_ENTITY_NAME}
]:
Before:
Access level [ {CAA_ACCESS_ASSIGNMENTS_OLD}
] applied to {CAA_ENFORCEMENT_ENDPOINTS_OLD}
of [ {APPLICATION_NAME}
] in [ {MODE}
] mode.
After:
Access level [ {CAA_ACCESS_ASSIGNMENTS_NEW}
] applied to {CAA_ENFORCEMENT_ENDPOINTS_NEW}
of [ {APPLICATION_NAME}
] in [ {MODE}
] mode.
All access to unconfigured third-party apps blocked for users under 18
All third party API access blocked for users under 18.
UNDERAGE_BLOCK_ALL_THIRD_PARTY_API_ACCESS
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
All access to unconfigured third-party apps blocked for users under 18 for {ORG_UNIT_NAME}
All third party API access blocked
BLOCK_ALL_THIRD_PARTY_API_ACCESS
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
All third party API Access blocked
All third party API access unblocked
UNBLOCK_ALL_THIRD_PARTY_API_ACCESS
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
All third party API Access unblocked
Allow 2-Step Verification
ALLOW_STRONG_AUTHENTICATION
DOMAIN_
|
The primary domain name. |
NEW_
|
The new |
OLD_
|
The previous |
GET https://admin.googleapis.com
Allow 2-Step Verification has been set from {OLD_VALUE}
to {NEW_VALUE}
for {DOMAIN_NAME}
Allow Google Sign-in only access to unconfigured third-party apps for users under 18
Allow Google Sign-in only third party API access for users under 18.
UNDERAGE_SIGN_IN_ONLY_THIRD_PARTY_API_ACCESS
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Allow Google Sign-in only access to unconfigured third-party apps for users under 18 for {ORG_UNIT_NAME}
Allow Google Sign-in only third party API access
SIGN_IN_ONLY_THIRD_PARTY_API_ACCESS
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Allow Google Sign-in only third party API access
API Access Allowed
ALLOW_SERVICE_FOR_OAUTH2_ACCESS
OAUTH2_
string
OAuth2 service name. Possible values:
-
APPS_SCRIPT
Apps Script Service name. -
APPS_SCRIPT_RUNTIME -
CALENDAR -
CLASSROOM
Classroom service. -
CLOUD_BILLING -
CLOUD_MACHINE_LEARNING -
CLOUD_PLATFORM -
CLOUD_SEARCH
Cloud search service. -
CONTACTS -
DRIVE -
DRIVE_HIGH_RISK -
GMAIL -
GMAIL_HIGH_RISK -
GROUPS
Groups service. -
GSUITE_ADMIN -
TASKS
Tasks service. -
VAULT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_SERVICE_NAME}
API Access is allowed for {ORG_UNIT_NAME}
API Access Blocked
DISALLOW_SERVICE_FOR_OAUTH2_ACCESS
OAUTH2_
string
OAuth2 service name. Possible values:
-
APPS_SCRIPT
Apps Script Service name. -
APPS_SCRIPT_RUNTIME -
CALENDAR -
CLASSROOM
Classroom service. -
CLOUD_BILLING -
CLOUD_MACHINE_LEARNING -
CLOUD_PLATFORM -
CLOUD_SEARCH
Cloud search service. -
CONTACTS -
DRIVE -
DRIVE_HIGH_RISK -
GMAIL -
GMAIL_HIGH_RISK -
GROUPS
Groups service. -
GSUITE_ADMIN -
TASKS
Tasks service. -
VAULT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_SERVICE_NAME}
API Access is blocked for {ORG_UNIT_NAME}
app access settings collection id change.
CHANGE_APP_ACCESS_SETTINGS_COLLECTION_ID
DOMAIN_
|
The primary domain name. |
NEW_
|
The new |
OLD_
|
The previous |
ORG_
|
The organizational unit (OU) name (path). |
SETTING_
|
The unique name (ID) of the setting that was changed. |
GET https://admin.googleapis.com
App Access Settings Collection for the org unit {ORG_UNIT_NAME}
has changed from {OLD_VALUE}
to {NEW_VALUE}
App added to Blocked list
ADD_TO_BLOCKED_OAUTH2_APPS
OAUTH2_
string
OAuth2 application ID.
OAUTH2_
string
Name of service.
OAUTH2_
string
OAuth2 application type. Possible values:
-
ANDROID -
CHROME_EXTENSION -
IOS -
OAUTH2_CLIENT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_APP_NAME}
added to Blocked list for {ORG_UNIT_NAME}
App added to Limited list
ADD_TO_LIMITED_OAUTH2_APPS
OAUTH2_
string
OAuth2 application ID.
OAUTH2_
string
Name of service.
OAUTH2_
string
OAuth2 application type. Possible values:
-
ANDROID -
CHROME_EXTENSION -
IOS -
OAUTH2_CLIENT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_APP_NAME}
added to Limited list for {ORG_UNIT_NAME}
App added to Trusted by OAuth Scope list
ADD_TO_TRUSTED_BY_OAUTH_SCOPE_OAUTH2_APPS
OAUTH2_
string
OAuth2 application ID.
OAUTH2_
string
Name of service.
OAUTH2_
string
OAuth2 application type. Possible values:
-
ANDROID -
CHROME_EXTENSION -
IOS -
OAUTH2_CLIENT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_APP_NAME}
added to trusted by OAuth scope list for {ORG_UNIT_NAME}
App allowlisted for exemption from API access blocks
ADD_TO_CAA_EXEMPT_OAUTH2_APPS
OAUTH2_
string
OAuth2 application ID.
OAUTH2_
string
Name of service.
OAUTH2_
string
OAuth2 application type. Possible values:
-
ANDROID -
CHROME_EXTENSION -
IOS -
OAUTH2_CLIENT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_APP_NAME}
allowlisted for exemption from API access blocks for {ORG_UNIT_NAME}
App no longer allowlisted for exemption from API access blocks
REMOVE_FROM_CAA_EXEMPT_OAUTH2_APPS
OAUTH2_
string
OAuth2 application ID.
OAUTH2_
string
Name of service.
OAUTH2_
string
OAuth2 application type. Possible values:
-
ANDROID -
CHROME_EXTENSION -
IOS -
OAUTH2_CLIENT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_APP_NAME}
removed from allowlist for exemption from API access blocks for {ORG_UNIT_NAME}
App no longer trusted
REMOVE_FROM_TRUSTED_OAUTH2_APPS
OAUTH2_
string
OAuth2 application ID.
OAUTH2_
string
Name of service.
OAUTH2_
string
OAuth2 application type. Possible values:
-
ANDROID -
CHROME_EXTENSION -
IOS -
OAUTH2_CLIENT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_APP_NAME}
no longer trusted for {ORG_UNIT_NAME}
App removed from Blocked list
REMOVE_FROM_BLOCKED_OAUTH2_APPS
OAUTH2_
string
OAuth2 application ID.
OAUTH2_
string
Name of service.
OAUTH2_
string
OAuth2 application type. Possible values:
-
ANDROID -
CHROME_EXTENSION -
IOS -
OAUTH2_CLIENT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_APP_NAME}
removed from Blocked list for {ORG_UNIT_NAME}
App removed from Limited list
REMOVE_FROM_LIMITED_OAUTH2_APPS
OAUTH2_
string
OAuth2 application ID.
OAUTH2_
string
Name of service.
OAUTH2_
string
OAuth2 application type. Possible values:
-
ANDROID -
CHROME_EXTENSION -
IOS -
OAUTH2_CLIENT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_APP_NAME}
removed from Limited list for {ORG_UNIT_NAME}
App removed from Trusted by OAuth Scope list
REMOVE_FROM_TRUSTED_BY_OAUTH_SCOPE_OAUTH2_APPS
OAUTH2_
string
OAuth2 application ID.
OAUTH2_
string
Name of service.
OAUTH2_
string
OAuth2 application type. Possible values:
-
ANDROID -
CHROME_EXTENSION -
IOS -
OAUTH2_CLIENT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_APP_NAME}
removed from trusted by OAuth scope list for {ORG_UNIT_NAME}
App trusted
ADD_TO_TRUSTED_OAUTH2_APPS
OAUTH2_
string
OAuth2 application ID.
OAUTH2_
string
Name of service.
OAUTH2_
string
OAuth2 application type. Possible values:
-
ANDROID -
CHROME_EXTENSION -
IOS -
OAUTH2_CLIENT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
{OAUTH2_APP_NAME}
trusted for {ORG_UNIT_NAME}
Apps added to Blocked list
MULTIPLE_ADD_TO_BLOCKED_OAUTH2_APPS
OAUTH2_
|
Number of OAuth2 apps. |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
{OAUTH2_NUM_APPS}
apps added to Blocked list for {ORG_UNIT_NAME}
Apps added to Limited list
MULTIPLE_ADD_TO_LIMITED_OAUTH2_APPS
OAUTH2_
|
Number of OAuth2 apps. |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
{OAUTH2_NUM_APPS}
apps added to Limited list for {ORG_UNIT_NAME}
Apps added to Trusted by OAuth Scope list
MULTIPLE_ADD_TO_TRUSTED_BY_OAUTH_SCOPE_OAUTH2_APPS
OAUTH2_
|
Number of OAuth2 apps. |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
{OAUTH2_NUM_APPS}
apps added to Trusted by OAuth Scope list for {ORG_UNIT_NAME}
Apps added to Trusted list
MULTIPLE_ADD_TO_TRUSTED_OAUTH2_APPS
OAUTH2_
|
Number of OAuth2 apps. |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
{OAUTH2_NUM_APPS}
apps added to Trusted list for {ORG_UNIT_NAME}
Apps lists bulk upload
OAUTH_APPS_BULK_UPLOAD
BULK_
|
Bulk upload successful oauth app number. |
BULK_
|
Bulk upload total oauth app number. |
GET https://admin.googleapis.com
{BULK_UPLOAD_SUCCESS_OAUTH_APPS_NUMBER}
of {BULK_UPLOAD_TOTAL_OAUTH_APPS_NUMBER}
rows successfully uploaded
Apps lists bulk upload notification
OAUTH_APPS_BULK_UPLOAD_NOTIFICATION_SENT
USER_
string
The user's primary email address.
GET https://admin.googleapis.com
Notification of bulk upload for apps list sent to {USER_EMAIL}
Block On Device Access
Summary message to display in the audit log when device access for OAuth2 apps is blocked.
BLOCK_ON_DEVICE_ACCESS
OAUTH2_
string
OAuth2 service name. Possible values:
-
APPS_SCRIPT
Apps Script Service name. -
APPS_SCRIPT_RUNTIME -
CALENDAR -
CLASSROOM
Classroom service. -
CLOUD_BILLING -
CLOUD_MACHINE_LEARNING -
CLOUD_PLATFORM -
CLOUD_SEARCH
Cloud search service. -
CONTACTS -
DRIVE -
DRIVE_HIGH_RISK -
GMAIL -
GMAIL_HIGH_RISK -
GROUPS
Groups service. -
GSUITE_ADMIN -
TASKS
Tasks service. -
VAULT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Block on device {OAUTH2_SERVICE_NAME}
access for {ORG_UNIT_NAME}
Change 2-Step Verification Enrollment Period Duration
CHANGE_TWO_STEP_VERIFICATION_ENROLLMENT_PERIOD_DURATION
GROUP_
|
The group's primary email address. |
NEW_
|
The new |
OLD_
|
The previous |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
2-step verification enrollment period duration for {ORG_UNIT_NAME}
changed from {OLD_VALUE}
to {NEW_VALUE}
Change 2-Step Verification Frequency
CHANGE_TWO_STEP_VERIFICATION_FREQUENCY
GROUP_
|
The group's primary email address. |
NEW_
|
The new |
OLD_
|
The previous |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
2-step verification frequency for {ORG_UNIT_NAME}
changed from {OLD_VALUE}
to {NEW_VALUE}
Change 2-Step Verification Grace Period Duration
CHANGE_TWO_STEP_VERIFICATION_GRACE_PERIOD_DURATION
GROUP_
|
The group's primary email address. |
NEW_
|
The new |
OLD_
|
The previous |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
2-step verification grace period duration for {ORG_UNIT_NAME}
changed from {OLD_VALUE}
to {NEW_VALUE}
Change 2-Step Verification Start Date
CHANGE_TWO_STEP_VERIFICATION_START_DATE
GROUP_
|
The group's primary email address. |
NEW_
|
The new |
OLD_
|
The previous |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
2-step verification start date has been changed from {OLD_VALUE}
to {NEW_VALUE}
Change Allowed 2-step Verification Methods
CHANGE_ALLOWED_TWO_STEP_VERIFICATION_METHODS
ALLOWED_
string
Allowed two-step verification method. Possible values:
-
ANY
A label that targets any distribution. -
ONLY_SECURITY_KEY
GROUP_
string
The group's primary email address.
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
2-step verification allowed 2-step verification methods for {ORG_UNIT_NAME}
changed to {ALLOWED_TWO_STEP_VERIFICATION_METHOD}
Context Aware Access Enablement
TOGGLE_CAA_ENABLEMENT
NEW_
string
The new SETTING_NAME
value that was set during this event.
GET https://admin.googleapis.com
Context Aware Access has been {NEW_VALUE}
.
Context Aware Access Error Message Change
CHANGE_CAA_ERROR_MESSAGE
NEW_
|
The new |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
Error message has been changed to [ {NEW_VALUE}
]. (OrgUnit Name: {ORG_UNIT_NAME}
)
Context Aware Access Remediation Enablement
TOGGLE_CAA_REMEDIATION_ENABLEMENT
NEW_
|
The new |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
Context Aware Access Remediation has been {NEW_VALUE}
. (OrgUnit Name: {ORG_UNIT_NAME}
)
Disabled Edu over 18 users apps requests
EDU_OVER_18_APPROVAL_WORKFLOW_DISABLED
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Disabled Edu over 18 users apps requests for {ORG_UNIT_NAME}
Disabled over 18 users making delegated apps requests
EDU_DELEGATED_USER_APPROVAL_WORKFLOW_DISABLED
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Disabled over 18 users making delegated apps requests for {ORG_UNIT_NAME}
Disabled under 18 users apps requests
UNDERAGE_USER_APPROVAL_WORKFLOW_DISABLED
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Disabled under 18 users apps requests for {ORG_UNIT_NAME}
Disabled users over 18 to make apps requests
USER_APPROVAL_WORKFLOW_DISABLED
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Disabled users over 18 to make apps requests for {ORG_UNIT_NAME}
Domain Owned Apps not trusted
UNTRUST_DOMAIN_OWNED_OAUTH2_APPS
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Domain Owned Apps removed from trusted list
Domain Owned Apps trusted
TRUST_DOMAIN_OWNED_OAUTH2_APPS
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Domain Owned Apps added to trusted list
Enable Non-Admin User Password Recovery
ENABLE_NON_ADMIN_USER_PASSWORD_RECOVERY
GROUP_
|
The group's primary email address. |
NEW_
|
The new |
OLD_
|
The previous |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
Enable non-admin user password recovery setting in {ORG_UNIT_NAME}
organization changed from {OLD_VALUE}
to {NEW_VALUE}
Enabled Edu over 18 users apps requests
EDU_OVER_18_APPROVAL_WORKFLOW_ENABLED
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Enabled Edu over 18 users apps requests for {ORG_UNIT_NAME}
Enabled over 18 users making delegated apps requests
EDU_DELEGATED_USER_APPROVAL_WORKFLOW_ENABLED
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Enabled over 18 users making delegated apps requests for {ORG_UNIT_NAME}
Enabled under 18 users apps requests
UNDERAGE_USER_APPROVAL_WORKFLOW_ENABLED
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Enabled under 18 users apps requests for {ORG_UNIT_NAME}
Enabled users over 18 to make apps requests
USER_APPROVAL_WORKFLOW_ENABLED
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Enabled users over 18 to make apps requests for {ORG_UNIT_NAME}
Enforce 2-Step Verification
ENFORCE_STRONG_AUTHENTICATION
DOMAIN_
|
The primary domain name. |
GROUP_
|
The group's primary email address. |
NEW_
|
The new |
OLD_
|
The previous |
ORG_
|
The organizational unit (OU) name (path). |
SETTING_
|
The unique name (ID) of the setting that was changed. |
GET https://admin.googleapis.com
{SETTING_NAME}
in security settings for your organization changed from {OLD_VALUE}
to {NEW_VALUE}
Error message for restricted OAuth2 apps updated
Summary message to display in the audit log for Oauth2 scope management settings.
UPDATE_ERROR_MSG_FOR_RESTRICTED_OAUTH2_APPS
NEW_
|
The new |
OLD_
|
The previous |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
Error message for restricted OAuth2 apps for your organization updated from {OLD_VALUE}
to {NEW_VALUE}
Less Secure Apps Access setting changed
WEAK_PROGRAMMATIC_LOGIN_SETTINGS_CHANGED
GROUP_
|
The group's primary email address. |
NEW_
|
The new |
OLD_
|
The previous |
ORG_
|
The organizational unit (OU) name (path). |
GET https://admin.googleapis.com
Setting changed for {ORG_UNIT_NAME}
organization unit from {OLD_VALUE}
to {NEW_VALUE}
Session Control Settings Change
Event name for change in session control settings.
SESSION_CONTROL_SETTINGS_CHANGE
ORG_
string
The organizational unit (OU) name (path).
REAUTH_
string
Application for with reauthentication settings apply. Possible values:
-
ADMIN_CONSOLE
Google admin console. -
CLOUD_ADMIN_TOOLS
Google cloud admin tools.
REAUTH_
string
Old Session control settings. Possible values:
-
INHERIT
Message to represent setting that inherits from its parent org unit. -
NEVER
Message to represent setting that never does reauthentication.
REAUTH_
string
Old Session control settings. Possible values:
-
INHERIT
Message to represent setting that inherits from its parent org unit. -
NEVER
Message to represent setting that never does reauthentication.
GET https://admin.googleapis.com
Session Control Settings updated for {REAUTH_APPLICATION}
from {REAUTH_SETTING_OLD}
to {REAUTH_SETTING_NEW}
. (OrgUnit Name: {ORG_UNIT_NAME}
)
Session length changed
CHANGE_SESSION_LENGTH
NEW_
|
The new |
OLD_
|
The previous |
GET https://admin.googleapis.com
Session length has been changed from {OLD_VALUE}
to {NEW_VALUE}
Unblock on Device Access
Summary message to display in the audit log when device access for OAuth2 apps is unblocked.
UNBLOCK_ON_DEVICE_ACCESS
OAUTH2_
string
OAuth2 service name. Possible values:
-
APPS_SCRIPT
Apps Script Service name. -
APPS_SCRIPT_RUNTIME -
CALENDAR -
CLASSROOM
Classroom service. -
CLOUD_BILLING -
CLOUD_MACHINE_LEARNING -
CLOUD_PLATFORM -
CLOUD_SEARCH
Cloud search service. -
CONTACTS -
DRIVE -
DRIVE_HIGH_RISK -
GMAIL -
GMAIL_HIGH_RISK -
GROUPS
Groups service. -
GSUITE_ADMIN -
TASKS
Tasks service. -
VAULT
ORG_
string
The organizational unit (OU) name (path).
GET https://admin.googleapis.com
Unblock on device {OAUTH2_SERVICE_NAME}
access for {ORG_UNIT_NAME}
Users requesting access list download
DOWNLOAD_PENDING_APP_USER_REQUESTS
OAUTH2_
|
OAuth2 application ID. |
|---|---|
OAUTH2_
|
Name of service. |
GET https://admin.googleapis.com
Downloaded list of users requesting access to {OAUTH2_APP_NAME}
