Skip to main content
Skip table of contents

Direct Message Injection (DMI) Setup Guide for Google Workspace

The Direct Message Injection (DMI) feature (currently in Beta) allows phishing simulation emails to bypass traditional email filtering, delivering them directly to user inboxes without the need for whitelisting. This is achieved by creating a secure connection between your SoSafe account and your Google Workspace account.

Setting up DMI in Google Workspace

Step 1: Prerequisites

  • Required Admin role: Ensure you have a Google Workspace account with a super admin role to set up DMI. Refer to Google’s Control API access with domain-wide delegation for more details.

  • Limitations: The DMI connection does not support sending messages to alias email addresses.

Step 2: Authorize DMI in Google Workspace

  1. Log into your Google Workspace Admin console at admin.google.com

  2. Navigate to Security:

    1. Go to Security (or More Controls at the bottom if you don’t see it).

  3. Access API controls:

    1. In security, click Overview, then select API Controls.

  4. Enable domain wide delegation:

    1. Under Domain wide delegation, click Manage domain wide delegation.

    2. Click Add new.

  5. Enter client ID and scopes:

    1. In Client ID, enter: 105916117134231974568

    2. In OAuth Scopes, enter: https://www.googleapis.com/auth/gmail.insert

  6. Authorize:

    1. Click the Authorize button to finalize.

Step 3: Activate Google DMI in SoSafe Manager

  1. Log into your SoSafe Manager account.

  2. Navigate to Integrations:

    1. Go to Settings > Integrations

  3. Enable Google DMI:

    1. Find the Google DMI card and click Activate.

    2. In the pop-up, enter your Gmail account email and click Send Test Email.

  4. Verify connection:

    1. Check your inbox to confirm receipt of the test email.

    2. Once verified, check the Google DMI Connection box to enable Google DMI in your SoSafe Manager.

Disconnecting Google DMI

If you need to disable the DMI connection, follow these steps:

  1. Log into your SoSafe Manager account.

  2. Navigate to Integrations:

    1. Go to Settings > Integrations.

  3. Disable Google DMI:

    1. Find the Google DMI card, click Edit, and uncheck the Google DMI Connection box.

  4. Regenerate emails for active campaigns:

    1. For active campaigns, trigger email regeneration in the manager to ensure proper delivery without DMI.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.