Hello, how can we help you better?
Adding a Google Workspace (custom domain) email address as an Email Provider
Instructions for setting up a Google Workspace email provider.
Written by Cheryl Wakeam
Updated over
6 days ago
Your AORforms account can be set up to send Signature Request emails from your own email address.
- In the left navigation menu, go to Email Settings > Add Provider > Connect (with Gmail)
- Login with your Google Credentials for the email address you want to have Signature Request emails sent from.
- Allow Aorforms.com to Send email on your behalf.
- Access to see, edit, create and delete only the specific Google Drive files you use with this app will allow you to save a copy of signed forms to your google drive.
Troubleshooting (for Google Workspace administrators):
The Problem: Untrusted App Access
Your Google Workspace is likely configured to only allow access to applications that you have explicitly trusted. The app in question, "Aorforms.com Digital E-Signature SaaS Solution," has not been added to this trusted list.
Solution (Recommended & Most Secure): Trust the Specific App
Instead of loosening your overall security, the best practice is to specifically approve this one application.
- Log in to the Google Admin Console:Go to admin.google.com and sign in with your administrator account.
- Navigate to API Controls:From the main menu (☰), go to Security > Access and data control > API controls.
- Manage Third-Party App Access:In the
API controlssection, click on the card labeled Manage Third-Party App Access. - Find and Configure the App:
- You will see a list of apps that have attempted to access your organization's data. Look for the "Aorforms.com" application. You can use the search or add filters to find it.
- If you see it listed as "Blocked," hover over it and click Change access.
- Change the access level from
Blockedto Trusted. - Click Save.
What if the app isn't listed?If the app doesn't appear in the list, you may need to add it manually using its OAuth 2.0 Client ID. You can usually get this ID from the app's documentation or support. Once you have it, you can add it via the "Add app" button on the same page.
Alternative (Less Secure): Change the Global Setting
If you want to allow users to authorize most apps themselves, you can change the default policy. Be cautious with this setting, as it reduces your organization's security.
- Follow steps 1-3 above to get to the Manage Third-Party App Access page.
- Look for the primary setting, which will likely be set to something like "Limit access" or "Block all third-party API access".
- Click on the setting to edit it. You can change it to a more lenient option, such as "Allow users to grant access to third-party apps that only ask for basic Google profile info (name, email, profile picture)" or "Allow users to grant access to any third-party app".
- Even with a more lenient setting, you still may need to specifically trust apps that ask for "high-risk" scopes like sending email.
Important Considerations:
- Propagation Time: After you make a change in the Admin console, it can take anywhere from a few minutes to 24 hours to fully propagate across Google's systems. Try authorizing the app again after about 15-30 minutes.
- Organizational Units (OUs): Make sure you are applying this policy change to the correct Organizational Unit. The user might be in an OU with a more restrictive policy than the top-level organization.
- Scopes: The permission to "send email on your behalf" (https://www.googleapis.com/auth/gmail.send) is considered a sensitive, high-risk scope. This is why Google's security controls are particularly strict about it. Trusting the specific app is the safest way to grant this permission.
In summary, the most direct and secure solution is to go to Security > API controls > Manage Third-Party App Access and explicitly set the "Aorforms.com" application to Trusted.
Did this answer your question?
