Email Importing - Google
Overview
Manage1to1 can connect to Gmail using OAuth2 for help desk email importing. This is used only for the ticketing system to import inbound messages and convert them into tickets or ticket replies.
OAuth2 is recommended because it avoids storing a mailbox password and aligns better with Google Workspace security controls.
Email importing is used only for the help desk ticket system. It does not change how Manage1to1 sends outbound emails to administrators or end users.
Before you start
You will need:
- Access to Google Cloud Console
- A Gmail or Google Workspace mailbox to use for the department
- Your Manage1to1 tenant URL
- The OAuth2 callback URL shown in Manage1to1 under the department configuration
If you have multiple departments with different Gmail addresses, each department must be authorized separately under the corresponding Google account. Each mailbox generates its own OAuth token.
Step 1: Create your Google project
- Open Google Cloud Console.
- Create a new project dedicated to Manage1to1 help desk importing.
- Navigate to APIs & Services, then Credentials.
This project should be used only for help desk importing so credentials and audit history remain clean and isolated.
Step 2: Configure the OAuth consent screen
- In APIs & Services, open OAuth consent screen.
- Choose External as the user type.
This allows the OAuth flow to work even when the mailbox is not restricted to a single internal org configuration.
- Complete the required fields.
- Add your Manage1to1 domain to Authorized domains.
Your authorized domain should be your tenant domain, for example: yourschool.manage1to1.com.
If your Manage1to1 domain is not listed as an authorized domain, authorization can fail or produce unexpected consent behavior.
- Save the consent screen configuration.
Step 3: Create an OAuth client ID
- Go to APIs & Services, then Credentials.
- Select Create Credentials, then choose OAuth client ID.
- Choose Web application as the application type.
- Provide an application name that clearly identifies the purpose, for example:
Manage1to1 Help Desk Importing.
Step 4: Add the redirect URI from Manage1to1
- In the OAuth client settings, find Authorized redirect URIs.
- Add the OAuth2 Callback URL shown in Manage1to1:
Navigate to Settings, then Help Desk Settings, then Help Desk Departments. Open a department (or create one) and locate the callback URL presented for Google OAuth configuration.
The redirect URI must match exactly. Any mismatch will prevent authorization and the refresh token will not be generated.
- Save the OAuth client.
After creation, Google will provide:
- Client ID
- Client Secret
Keep both available. You will enter them into Manage1to1.
Step 5: Configure Gmail importing in the department
In Manage1to1:
- Go to Settings, then Help Desk Settings, then Help Desk Departments.
- Create a new department or edit an existing one.
- In the Mail Server Information area, select Google as the provider.
- Select OAuth2 as the authentication method.
- Enter:
- The Gmail address that will receive department emails
- The Client ID
- The Client Secret
At this point, the OAuth refresh token field should still be empty.
Step 6: Authorize the mailbox
- Click Authorize.
- When prompted by Google, choose the same Google account as the mailbox being configured.
If you are signed into multiple Google accounts, the most common failure here is authorizing the wrong account. The refresh token that comes back will only work for the account you authorized.
- Approve access when Google requests permissions.
If you see “This app isn’t verified”
Some environments will show a Google warning that the app is not verified.
Proceed by selecting Advanced, then continuing to your application to complete the flow.
This is a Google UI warning, not a Manage1to1 error. The goal is to complete authorization so the refresh token is generated.
Step 7: Confirm the refresh token is generated
After authorization completes successfully, Manage1to1 will populate the OAuth Refresh Token field automatically.
If the refresh token field remains blank after authorization, importing will not work. The most common causes are a redirect URI mismatch or authorizing the wrong Google account.
Step 8: Save settings and validate
- Click Save Settings.
- Manage1to1 will re-test the configuration during save.
If validation fails:
- Confirm redirect URI matches exactly in Google Cloud Console
- Confirm Client ID and Client Secret are correct
- Confirm the authorized Google account matches the mailbox entered in the department
- Repeat the authorization step if needed
Once saved successfully, Manage1to1 will begin importing mail for that department on its normal interval.