What’s changing
The Groups Admin role can now be assigned for security groups or non-security groups. Previously, those with the Groups Admin role had access to all groups within an organization. This change gives administrators more granular delegation of group admin responsibilities, helping limit access to the most sensitive groups to only those who absolutely need it.
This feature is available in open beta, which means no additional sign-up is required to use the feature.
Getting started
- Admins:
- You can assign a group as a security group through the Cloud Identity Groups API or the Admin Console, and then manage these groups through the Admin SDK Groups API, the Admin console, or the Cloud Identity Groups API. See our API documentation to learn how to update a Google Group to a security group.
- Visit the Help Center to learn more about the Groups Admin role, assigning specific admin roles, and prebuilt administrator roles.
- End users: There is no end user impact or action required.
Rollout pace
- Rapid and Scheduled Release domains: Gradual rollout (up to 15 days for feature visibility) starting on February 26, 2024
Availability
- Available to Google Workspace Enterprise Standard, Enterprise Plus, Education Plus, and Education Standard customers
Resources
- Google Workspace Admin Help: Assign specific admin roles
- Google Workspace Admin Help: Control access to sensitive data with security groups
- Google Workspace Admin Help: Prebuilt administrator roles
- Google Workspace Updates Blog: Manage groups programmatically with the Cloud Identity Groups API beta
- Developer Documentation: REST Resource: groups
- Developer Documentation: Creating security groups