Blog Post

Community blog
2 MIN READ

Best practices: retaining control of the Google accounts which manage your Android Enterprise organisation

Lizzie's avatar
Lizzie
Google Community Manager
2 years ago

Hello everyone,

 

Please note: the below information is not relevant for Workspace organisations, or if you are using the new Android Enterprise sign-up experience (from 2024 onwards) please refer to this Help Center article instead. 

 

The ability to manage and publish apps to your devices is important for any IT owner or administrator. So, it goes without saying that maintaining control of the Google accounts associated with your Managed Google Play enterprise is high-priority. 

 

To help with this, we’d recommend the following best practices: :

 

  • Additional account owners/admin: add multiple owners to your Managed Google Account enterprise so you can still organise managed Google Play apps, even if one owners’ account is impacted 

 

  • Stay informed with notifications: add a recovery email or contact information to your Google Account(s), so you are notified of any changes with your account

 

  • 2-step verification: add an additional layer of security to your account (keep in mind, if you transfer your account to another member of your team, you will need to update this)


  • Keep a record of your Enterprise ID number (also called Organisation ID): this ID is a unique identifier for the binding between your EMM instance and your Managed Google Play account. This might be asked for from third-party app developers or if you ever need to troubleshoot an issue, this ID number is a handy reference for your account. To locate this, take a look at this Help Center article.   


What should I do if my Google account is deleted and it’s the only account associated with my organisations/Enterprise Managed Google Play account? 

 

When the Google account of the only admin associated with the Managed Google Play organisation/enterprise account is deleted, the organisation/Enterprise will become orphaned.   It will remain fully functional (retaining the ability to enrol new devices and manage apps), except you will not be able to log into services that require that deleted Google account (such as your Managed Google Play account).

 

If you have an additional owner or admin associated (as mentioned above in the best practices), you reduce the risk of your organisation/Enterprise becoming orphaned.

 

If this happens, to regain access* you’ll need to associate a new Google account to your organisation/Enterprise. Following best practices, we would recommend updating this as soon as possible. 

 

To add a new Google account:

  • Open a support ticket directly with your EMM
  • Include the new Google account you wish to use as a replacement

 

Your EMM will then raise a ticket directly with Google to rebind your new Google gmail account to your organisation. Simply, accept the Play Terms of Service and return to business as usual. 

 

*Please note, if your account was closed before 23 November  2023, unfortunately there is no way to recover the organisation account associated with it. 

 

We know this has been a popular question within the community, so I hope this is helpful.

 

Thank you,

Lizzie

Published 2 years ago
Version 1.0
Lizzie's avatar
Google Community Manager
Joined May 26, 2023
View Profile
Community blog
Explore curated guides and tips from the Android Enterprise team and community members.

13 Comments

Show More
  • lefrinj's avatar
    lefrinj
    Level 1.5: Cupcake
    23 days ago

    I am just running into this now, I set my organisation up in April 2024 before the new registration flow. I got the final cancellation notice, and as with some of the other commenters, I had no other emails to the recovery email account. When I tried to recover, I was told that there was no recovery info and so I couldn't. Now, I don't even have that option, the account is gone even though it's a few days short of 30 days.

    I'm using Intune, and followed the advice on the following discussion from Lizzie to contact my EMM (MS/Intune), but so far they don't seem to know about opening a ticket with you to migrate the organisation bind to a different account. 

    Google Deleted Account that Links Managed Play Store | Android Enterprise and ChromeOS Customer Communities - 417

    Also, I should be using the new flow to get a managed account using our own domain/Entra account, but I don't know how to kick this off because the existing Google Account bind is still present - so that means I don't have a 'new account' to migrate the bind to. Ideally I would create the new managed Andriod Enterprise account in our Entra domain, the new way, and then migrate the bind to that. Is that even possible? 

    • Lizzie's avatar
      Lizzie
      Google Community Manager
      5 days ago

      Hello lefrinj​,

       

      Great to meet you. I'm sorry I'm just coming back to you, I've been speaking with our internal team about what they would recommend here - particularly around whether you can upgrade without needing to rebind first. The recommendation is that you do rebind to a new gmail account during that process the upgrade to a Managed Google Domain can happen. Upgrading would prevent this issue you are experiencing from potentially happening again. 

       

      The recommendation is as I mention above to ask your EMM to raise a ticket with our engineering team with the new gmail account you would like to rebind to. From your note here it sounds like you are having difficulties with getting this to happen. Would you mind sharing with me privately your ticket number and I'll highlight this to our team that work with Intune to see if we can get some movement on it please? I'll send you a direct message via your community inbox and if you can reply to that that I'll try and help. 

       

      Thanks so much,

      Lizzie

      • lefrinj's avatar
        lefrinj
        Level 1.5: Cupcake
        5 days ago

        Hi Lizzie, just to close off here as well, you'll hopefully have seen my direct message. Just a few days ago, MS (presumably in cooperation with you🙂) enabled an Upgrade button that let us seamlessly carry on without having to do much else. We have an Android Enterprise admin account connected using one of our own Entra/M365 user accounts, and all our devices are still enrolled. So if anyone else is in this position, look for an Upgrade button in the Managed Google Play Store connector, in the same place where you'd normally have had to disconnect and join again. 

        Thanks again for trying to help!

        Dev