Hi Philippe, I wonder if it's the fact that the SMTP connections are coming from AWS IP Addresses. Google may be seeing lot's of hijacked accounts accessed via SMTP from AWS IP Addresses and thus assuming (incorrectly of course) that your apps traffic means the account may have been hijacked. Can you try running the code on your local network and see if that produces the same suspicious account activity reports for users who have never gotten the message before?
Jay -- You received this message because you are subscribed to the Google Groups "Google Apps Domain Information and Management APIs" group. To view this discussion on the web visit https://groups.google.com/d/msg/google-apps-mgmt-apis/-/LcIiFZMoDRcJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-apps-mgmt-apis?hl=en.
