Audit forwarding rules, delegates, and risky mail filters across your Google Workspace domain — using configuration data only. No message content. No inbox browsing.
Forwarding rules, delegate access, and mail filters aren't visible in the standard Google Admin Console view. Checking one account manually is tedious. Checking 200 accounts regularly? That's not happening.
The real risk isn't whether you can check. It's whether you're checking often enough to catch misconfiguration before it becomes a breach.
Detect whether email is being forwarded externally. Is auto-forwarding enabled? Where is mail going? Does the original stay in the inbox? Most domains should show “Disabled” across the board.
See who can read and send email on behalf of the user. Active delegates, pending invitations, delegates on sensitive accounts. Delegation drift is one of the most common access control gaps.
Identify filters that create blind spots — external forwarding via filters, auto-delete to Trash, or silent archive (mark as read + skip inbox). Suspicious patterns are flagged automatically.
Review all verified forwarding destinations. Verified vs. pending, external vs. internal, dormant but reusable. Even if forwarding is disabled today, verified addresses remain available.
MonitorWorkspace offers full Gmail monitoring — read-only inbox access, email transfer, and search — when investigations require it. But governance checks use a lighter scope: gmail.settings.basic reads configuration only, not message content. No subjects, no bodies, no attachments. Start with settings. Escalate to inbox access only when the situation demands it. Both levels are fully audit-logged.
Before and after disabling an account — forwarding rules set up in the last week are worth scrutiny.
Check settings immediately to understand whether forwarding or delegate access contributed to the compromise.
Periodic sweep for high-risk accounts — executives, finance, HR, anyone with access to sensitive data. Configuration drifts over time.
Yes, you could build API scripts. But would they run on a schedule? Flag suspicious patterns automatically? Store audit history? Surface changes over time? Work consistently across tenants?
MonitorWorkspace makes Gmail governance operational — not ad hoc.
Gmail governance takes minutes, not hours. Free during beta.
Secure OAuth · Read-only configuration access · Full audit trail