Persona It Admin
Operate as a Google Workspace IT admin persona—security monitoring, audit review, Drive sharing policy, and daily standup via gws with gmail, drive, and calendar skills loaded.
Overview
persona-it-admin is an agent skill most often used in Operate (also Ship security) that instructs agents to administer Google Workspace—monitor security, review audits, and configure sharing—using gws-gmail, gws-drive, a
Install
npx skills add https://github.com/googleworkspace/cli --skill persona-it-adminWhat is this skill?
- Persona bundles gws-gmail, gws-drive, and gws-calendar as prerequisites
- Day-start `gws workflow +standup-report` for pending IT requests
- Drive sharing policy configuration for organizational security
- Explicit `--dry-run` before bulk operations and periodic auth status review
- Requires 3 utility skills (gws-gmail, gws-drive, gws-calendar)
- metadata version 0.22.5
- References 1 workflow (+standup-report)
Adoption & trust: 15.4k installs on skills.sh; 26.9k GitHub stars; 3/3 security scanners passed (skills.sh audits).
What problem does it solve?
You act as your own Workspace admin but lack a consistent agent playbook for security monitoring, audits, and sharing policy without living in every admin console screen.
Who is it for?
Solo builders or micro-teams on Google Workspace who self-administer and already use the gws skill family.
Skip if: Enterprises with dedicated IdP/SIEM teams or anyone without gws CLI and the three required utility skills configured.
When should I use this skill?
You need to administer Google Workspace IT tasks—security monitoring, audits, Drive policies—with gws and the gmail/drive/calendar skills loaded.
What do I get? / Deliverables
With utility skills loaded, the agent follows IT-admin rituals (standup report, login review, Drive policies) using gws workflows and safe dry-run defaults.
- Security and audit review actions
- Drive sharing policy updates (dry-run first)
- Daily standup-style IT request summary
Recommended Skills
Journey fit
Spans multiple journey phases - primary shelf plus alternate fits below.
IT administration and security monitoring are production-operate concerns once Workspace is the system of record for a solo business or micro-team. Monitoring subphase matches suspicious login review, audit logs, and regular `gws auth status` checks called out in the persona instructions.
Where it fits
Review suspicious login activity and audit logs after the morning +standup-report surfaces anomalies.
Run `gws auth status` before a bulk user or sharing change to confirm service account scope.
Tighten Drive sharing policies before shipping a client-facing deliverable stored in Shared drives.
Use calendar and mail utilities to triage IT-related requests that arrived overnight.
How it compares
Persona orchestration over gws utilities—not a standalone security scanner or MCP-only admin toy.
Common Questions / FAQ
Who is persona-it-admin for?
Indie operators who administer their own Google Workspace and want an agent persona that chains gws-gmail, gws-drive, and gws-calendar for security and configuration tasks.
When should I use persona-it-admin?
Use in Operate for daily monitoring and policy tweaks, in Ship security when hardening sharing before launch, and when starting the day with +standup-report to surface pending IT work.
Is persona-it-admin safe to install?
It can change Workspace security settings and bulk policies; use `--dry-run` as documented, verify auth status, and review the Security Audits panel on this Prism page before production changes.
Workflow Chain
Requires first: gws gmail, gws drive
Then invoke: gws workflow
SKILL.md
READMESKILL.md - Persona It Admin
# IT Administrator > **PREREQUISITE:** Load the following utility skills to operate as this persona: `gws-gmail`, `gws-drive`, `gws-calendar` Administer IT — monitor security and configure Workspace. ## Relevant Workflows - `gws workflow +standup-report` ## Instructions - Start the day with `gws workflow +standup-report` to review any pending IT requests. - Monitor suspicious login activity and review audit logs. - Configure Drive sharing policies to enforce organizational security. ## Tips - Always use `--dry-run` before bulk operations. - Review `gws auth status` regularly to verify service account permissions.