<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z00008mCm78CACOkta Identity EngineWorkflowsAnswered2024-03-25T17:04:22.000Z2023-02-08T03:02:54.000Z2023-02-09T16:29:16.000Z

unxej (unxej) asked a question.

Edited February 8, 2023 at 2:04 PM
How do you access a delegate account in Gmail with SAML integration in Okta?

We recently created an off-boarding Workflow that will add a user's manager/supervisor as a delegate to their Gmail account. We can confirm that the process is not producing errors in Okta during testing. Via GAM, I can further confirm that delegates are in fact added to the target user's account.

 

Ordinarily, without SSO, the supervisor would sign into Gmail, click their profile icon, and the target user's address would appear. Clicking it would open the mailbox in a different tab. With SSO, the target user's address does not appear beneath the profile icon. Clicking the only available option, "Add another account," opens a Gmail login screen where entering the target user's address redirects briefly to Okta before looping back to the originating mailbox with no access to the delegate.

 

I found the following from 2021 in the Okta Community Questions:

 

https://support.okta.com/help/s/question/0D54z00007K7MKxCAN/how-can-i-get-an-ea-access-to-their-managers-gmail-inbox-if-okta-sso-in-turned-on-for-google-workspace?language=en_US

 

I get that Okta > Gmail is a traditionally a 1:1 pairing in SAML. From the question's response, "We do not offer any feature such as Gmail delegation, which was done via Google Admin configuration outside Okta" is no longer the case as delegation can be added into the Workflows. Why would we then be able to add delegates to an account if there's no way to access them?

 

Is there a workaround to access the delegates or are we missing something here?

  • 1 answer
  • 925 views

  • Mihai N. (Okta, Inc.)

    Hi @unxej (unxej)​ , Thank you for reaching out to the Okta Community!

     

    There's no out-of-the-box solution for this at the moment but the following post might help you:

    https://support.okta.com/help/s/question/0D74z00000AG4GbCAL/detail?language=en_US

     

    In the meantime, you can suggest a feature enhancement on the Okta Community page by going to the Community Ideas tab. Features suggested in our community are reviewed and can be voted and commented on by other members. High popularity will increase the likelihood of it being picked up by the Product Team and it being implemented.  

    More details here: 

    https://support.okta.com/help/s/blog/a674z000001cj7YAAQ/okta-ideas-faq?language=en_US

     

     

     

     

    If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you. 

     

    Hope my answer helps! 

    --------------------------------

    Community members help others by clicking Like or Select as Best on responses. Try it today.

    Expand Post
This question is closed.
Loading
How do you access a delegate account in Gmail with SAML integration in Okta?