What’s changing
We’re introducing a new log event, Access Evaluation, which will help admins better understand how security policies affect their users’ access to OAuth apps. This includes settings and policies such as API controls, endpoint management configurations, domain wide delegation and more. The log contains information on the specific policies applied, when access was granted and the reasoning. Admins can use this information to review their security policies and revise them as needed to protect the sharing of Workspace data with users’ apps.
Example of an Access Evaluation log
Getting started
- Admins: Access Evaluation are available in the audit and investigation tool (Menu > Reporting > Audit and investigation > Access Evaluation log events), and the security investigation tool (Menu > Security > Security center > Investigation tool > Data source > Access Evaluation log events) for specific Google Workspace editions. Visit the Help Center to learn more about Access Evaluation log events.
- End users: There is no end user impact or action required.
Rollout pace
- Rapid Release and Scheduled Release domains: Extended rollout (potentially longer than 15 days for feature visibility) starting on January 30, 2025
Availability
- Available in the audit and investigation tool for all Google Workspace customers.
- Available in the security investigation tool for Google Workspace:
- Frontline Standard
- Enterprise Standard and Plus
- Education Standard and Plus
- Enterprise Essentials Plus
- Cloud Identity Premium