It is recommended that administrators use the Google Admin Console to configure specific Chrome apps and extensions to be force-installed for all managed users within the workspace (check this article for further references).

After an admin installs an app, the necessary permissions are automatically granted and will stay active, even if that specific admin later leaves or is removed.

Retrieval of the complete user list associated with the domain.

Monitoring the users' configuration such as missing MFA, inactive accounts, and more - and will raise an alert whenever an issue is detected.

Enabling 'Dark Web Monitoring' and 'External Footprint Scan.

These permissions enable the execution of remediation actions for detected ITDR incidents.

It allows to actively respond to risky activity and user-related threats by suspending a user or remediating an issue with an automated response.

These s enables the ‘Data Protection’ feature.

Once the integration is in place, Guardz scans the customer’s files and folders and raise an alert when an external share or suspicious activity is detected.

Email 'Read & Write' permissions are required to allow the injection of phishing simulation emails into end-user inboxes.

Navigate to the ‘Security Controls’ and see the top security authorization string

Click on 'Authorize Security’

Review the information and click 'Install'

Review application information and click 'Admin Install' (make sure you have admin permissions)

Make sure to select the 'Everyone at your organization' option

Click 'Finish' to complete the installation

To verify successful installation, make sure the status has changed to ‘Active’ (the process may take a couple of minutes)

You can also find the app now on your Google Admin account: Google Admin > Apps > Google Workspace Marketplace apps > Apps list