Description: Create tokened mails in gmail/gsuite mailboxes across your org.
Note: Once the Gmail tokening is complete, please remember to remove the “Client ID” and “Client Scopes” entries from your G Suite OAuth client’s dashboard found at:
SecurityAPI controls.Under App access control, select MANAGE THIRD-PARTY APP ACCESS.
Note: Please also have your list of email addresses (in CSV format) that you'd like tokened ready for Step 15.
Follow the steps below to tokenise a Google mailbox.
Step 1:
Log in to your Console.
Step 2:
Click Add a new Canarytoken.
Step 3:
Create a new Gmail Canarytoken from the drop down list.
Step 4:
Click on Let's begin (1 of 4).
Step 5:
Modify the token options and paragraph text if you'd like and click on Save Template (2 of 4).
Mail From: is the email address of who the message is from.
Mail Subject: this can be changed to whatever you want the subject of the mail to be.
Mail Content: you can change the content of this mail, we have given you a template to work from.
Step 6:
Login to your G Suite admin console here.
Step 7:
In the G Suite admin console, click on Security > Access and data control > API controls.
Step 8:
Click on MANAGE THIRD-PARTY APP ACCESS.
Step 9:
Click on Configure new app > Oath App Name Or Client ID
Step 10:
Enter your Client ID and hit SEARCH.
Step 11:
Select the Thinkst Gsuite Tokener.
Step 12:
Select the Client ID again and hit SELECT.
Step 13:
For App access, choose Trusted.
Step 14:
Select Domain wide delegation.
and add a new client ID entering the "API Scopes" presented on your Console.
Step 15:
Back on your Canary Console, provide a comma-separated email list and click on Insert Tokened Email (4 of 4).
Once the Gmail tokening is complete, please remember to remove the “Client ID” and “Client Scopes” entries from your G Suite OAuth client’s dashboard found over at:
