Table of Contents

I get an error with Google OAuth integration.

Yasuhiro Miyoshi Updated by Yasuhiro Miyoshi

Translation Disclaimer: The documents herein have been machine translated for your convenience by translation software. While reasonable efforts are made to provide accurate translations, portions may be incorrect. If you would like to report a translation error or inaccuracy, we encourage you to please contact us.

Problem

I get the following error when linking to Google related services.

**Error 400: admin_policy_enforced**

Access to account data is restricted to
restricted by your organization's internal policies.
Please contact your XXX administrator for more information.

Possible Causes

Block all third-party API access is turned on.

If "Block all API access by third parties" is checked in Security > API Control in the Google Workspace administration screen, integration may fail.

API to Google Workspace Management Console is restricted.

Google Workspace Administration Security > API Control > Manage GOOGLE Services

https://admin.google.com/ac/owl/list?tab=services

If the access policy for the Google Workspace Management Console in the Google Workspace Management Console is set to Restricted, the integration may fail.

IT Management Cloud is named and blocked.

In Google Workspace administration, go to Security > API Control > Manage Third Party App Access and search for the following applications and if their access status is Blocked or Restricted, the integration may fail The following is a list of the most common problems.

App ID : 833359967166-qls05tncj19vnh92ovkj7smpt1eqh45j.apps.googleusercontent.com
App Name : Money Forward ITMC
Support: it@i.moneyforward.com

solution

Although this can be resolved by setting Block to Allow for each of the causes listed above, I believe this may be a case where you would like to specifically allow only the IT Management Cloud, depending on your organization's policies.

However, depending on your organization's policy, you may want to allow only the MoneyForward IT Management Cloud.

  • Setup a new app > Select OAuth app name or client ID
  • Enter the following in the Client ID field and click the Search button. If Money Forward ITMC is found, select it.

Client ID

833359967166-qls05tncj19vnh92ovkj7smpt1eqh45j.apps.googleusercontent.com

  • Select the same client ID
  • Select "Trusted: All Google services are accessible" for app permissions, then run CONFIGURE.

You are now set to allow Google integration in MoneyForward IT Management Cloud.

Please go back to MoneyForward IT Management Cloud and execute the Google integration again.

Integration Procedure:

Google Workspace (G Suite)

How did we do?

How to setup SCIM (Okta Integration Network)

Promotion Code

Contact