File Exposure Report: Find Folders/Documents in Google Drive Shared Outside the Organisation

To find and list of files being shared outside of your domain in a report, make your way to drive audit in GAT+.

Here you will need to apply a filter.

Google Drive files filters in GAT+

You should add two new rules, one with a sharing flag set to ‘Shared out’ and the other with the ‘Updated’ flag set after or equal to one day before present (If it is October 16th, use October 15th as the date.)

Make sure to click the scheduled checkmark and also select “Every day – after midnight.”

Then select the Enabled button.

In the Recipients section, add the users who will be receiving these reports.

Make sure to give your filter an appropriate name and then select “Apply and Schedule” at the bottom.

Once that’s done navigate to the Scheduled Reports section of GAT+

This section will allow you to apply an action to your newly made reports.

Here you can find and highlight your report and then select the “Job Schedule Edit” button.

Make sure to select ‘Enabled’ and checkmark Report only.

In the action list you can select what kind of action you would like to take place, in this example I’ll select Remove all external shares. This means that if the report finds any external shares it will automatically remove them, and using the Notify local users area I can choose who will get notified and the Message they will receive.


{{FILES}} In the message box will list the files that were reported.

Control Sharing in Team Drive: Get a List of Users’ Access to Team Drives

G Suite admins need to ensure they are fully aware and in control of who has access to thier domain’s Team Drive. You can get the list of your users’ access to different team drives in GAT+ using Drive Audit. Start off by clicking the export button and selecting Export to Google Sheet without paths.

select Export to Google Sheet without paths

 When your data is exported select the ‘Click to view’ option. Once the spreadsheet has loaded create a filter for the type heading by selecting it and then choosing ‘create a new filter view’. Then simply filter out everything except for folders. You should now be able to see all the users who have access to these team drive folders.

filter out everything except for folders



A New Range of Searches in GAT’s New Drive UI

GAT+ Drive audit new UI has introduced a whole range of new searches, from simple metadata searches, to complex filter built searches (now with AND, OR, NAND, and NOR) to three new long (or background searches), covering complex filters over very large drive spaces, full content over every file and deep folder tree searches.
There has never been a more powerful way to find what you are looking for on your domain G Suite Drive.
Drive audit new UI has introduced a whole range of new searches

Google Drive: File Type Search

The file type table in Drive audit shows all of the files across your entire domain. Once you click on a particular file category, the filter will be applied and those files will appear in the Drive result table so you examine them in greater detail.

GAT+ File Type Search

When it comes to Google Drive, GAT returns all document details for all users by default. You can filter by any selection range using the custom filters button.

Apply custom filter

Once these results are returned you can then add further filter criteria on top of the Type filter.

For example:

Drive files filter

Note:  This search will return files of type Spreadsheet and which are also shared out of your domain.


Remember if this is a frequent search, you can ‘Apply & Save’ it.

[Feature Update] Easily Assess and Edit G Suite Groups

Edit Memberships in G Suite Groups

G Suite Admins, have you ever needed to copy a whole group in your domain just so you could add or remove a user from an existing group?

GAT+ now makes this easy with a single ‘Copy Group’ option for every existing group. You can then use the Admin console to update the membership list of the copied group.

copy an entire group with GAT+


Quickly Inspect and Delete G Suite Groups

Group management can be a tiresome exercise in the G Suite Admin console. GAT+ now lets Admins inspect groups and delete them quickly after inspection.

 inspect groups and delete them quickly with GAT+

[New Feature] Scan and Protect Google Drive files with GAT+ DLP

For those domains that have and use Drive DLP from Google, reporting can be a real pain. GAT+ now brings some order and focus to what is going on.
Here’s what you’ll see in GAT’s DLP dashboard:
1. The first diagram shows the number of DLP Drive events per day.
2. The second chart shows the number of Events per resource owner.
3. The third has information about how many of those events were related to Team vs Personal Drive.
copy an entire group with GAT+

Manage G Suite Permissions: List a User’s Folder Access Permissions

Sometimes, G Suite admins need to be able to see what documents and files a certain user has access to.
With GAT+, you can run a quick report to see what documents (within your G Suite domain) are approved for a certain user.
In the Drive audit, you can create a rule and find all the files ‘used’ by a certain user (this means they own, can read, comment or edit them) and then exclude the files they own.
This will leave you with a list of all the files they can access, excluding the ones they own. See the screenshot below for further clarification.
see what files are accessed by a certain user in G Suite

How to Remove a G Suite User’s Access Rights

Easily remove G Suite users who have access to files they shouldn’t. Using GAT+ you can remove users from being editors or readers of files.

click to remove permissions

You can remove users by clicking on the drop-down menu next to their email address. The menu that appears will allow you to remove the user from one file or multiple files within the current filter which you have applied.

Here’s how you can remove deleted G Suite accounts as editors or viewers to Google Drive files.

A Content Search Feature in the Drive Audit

We have included a tab in the new Drive Audit UI for ‘Content Search’. This search is equivalent to the ‘Full Text’ search but it will allow for safe searching of all the files in ‘scope’ for any string being searched for.

Seeing Everyone’s Future Events – Scheduling a Report for Newly Created Events

GAT+ Calendar audit provides an effective and efficient way to audit the security and exposure of your domain users calendars. Not only can you modify permissions on primary and secondary calendars, you can also audit calendar events, past and future. As with all GAT audits, you can audit for a user, group, OU or the entire domain. In this helpful guide, you will learn how to view all of the past and future events and you learn how to remove events and participants from them.


Schedule a Job to report newly created future events each day.

In the Calendars Audit, select the ‘Events’ tab.

1. Set the period to ‘future’, this will show all forward events set for the next year.

In the Calendars Audit, select the ‘Events’ tab.

2. Click on the ‘Apply custom filter’ icon to see only those created today (Select from today’s date)

Click on the ‘Apply custom filter’ icon to see only those created today (Select from today’s date)

3. Now click on the ‘Apply custom filter’ button again so we can schedule this filter to run automatically to provide us with a report of all of the newly created future events each day.

click on the ‘Apply custom filter’ button again so we can schedule this filter to run automatically

Make sure to set the occurrence to run ‘Every day – after midnight’. Don’t worry about refreshing the created date, GAT+ will automatically move that forward whenever this scheduled job runs.

Click on the ‘Apply & Schedule’ button to activate this scheduled job.


Event Management

Now that we know how to schedule for newly created events for each day, Let’s review other things we achieve within the Calendar Event area.


Some quick actions you can take on events:

  • Delete an event or all recurring events.

  • Delete particular attendees from an event or for all occurrences of that recurring event.

Delete particular attendees from an event or for all occurrences of that recurring event.