Block Personal Gmail, Allow Google Corporate Accounts
Overview
Nowadays emails are used very frequently to exchange information between people using electronic devices. In some organization personal emails in the office network are not allowed. Personal emails are blocked to avoid spending of productive time by employees. Allowing personal emails can also lead a path for leakage of confidential information. Nowadays some of the organization emails are via Google Corporate domains. Google corporate account allows organization to have their mailing server along with the additional Gmail features personalized for the organization with complete control. So, we currently cannot block Gmail.
Client Scenario
As an administrator, you may want to prevent users from signing into Google services using any accounts other than the account you provided them with. You do not want users to waste their productive time in other unnecessary mail exchanges in the office network. For example, you may not want users to use their personal Gmail accounts or manage Google Account from another domain. Block Personal Gmail To Ensure Data Security.
SafeSquid Secure Web Gateway (SWG) allows you to access corporate account only and block personal gmail account.
Policy Creation
To solve problem of personal Gmail blocking. We need to manipulate headers of Gmail so that only specific domain (corporate domains) is/are allowed and rest are denied (this includes personal Gmail). Also, as Gmail is HTTPS website, we need to make sure HTTPS Inspection is enabled.
We can achieve the above by following steps –
Enable policy from Policies and Profiles Section
We will first match request from only Google Application policy.
From SafeSquid Dashboard click on Configure page at the Top Right Corner. You will see Policies and profiles section on your screen.
Search for default profile named GOOGLE APPLICATION.
Edit and Enable this policy
Enable policy from Header Filter Section
We will insert header, so that only allowed domains are allowed by GOOGLE.
Click on Restriction Policies (Left Side Panel).
Click on Privacy Control submenu.
Click on Insert Tab.
Search for default profile named GOOGLE APPLICATION (First Rule).
Edit and Enable this Rule. Add Domains that you need to allow, in value field and Save the Policy.
Note: In case of multiple domains, each should be separated by ',’ with no space.
Validation
We will try to login into Personal Gmail account.
You will get error template/message from Google, with names of allowed domains.
Related Articles
Allow specific website through SafeSquid
Client Scenario Stark tech is having 200 employees. Stark tech distributes all 200 employees into different 'User Groups'. Now Stark tech blocked all the websites for defined 'User Group' say 'General Users' Stark tech challenges are: General users ...Allow anydesk
Overview For security reasons you blocked all the traffic to all users. But some of the users in your network need to access remote applications. Using SafeSquid you can allow specific users in your network to access remote applications. How it ...How to allow specific website through category
Client Scenario Stark tech is having 200 employees. Stark tech distributes all 200 employees into different 'User Groups'. Now Stark tech blocked all the websites for defined 'User Group' say 'General Users' Stark tech challenges are: General users ...Block Particular User Login To Facebook Or Gmail
Overview In corporation you have to restrict login usernames from Facebook and Gmail.Except selected users all can able to login into Facebook or Gmail. Prerequisites HTTPS Inspection should be enabled in SafeSquid. If not enabled, you can check our ...Block specific website through SafeSquid
Client Scenario Stark tech is having 200 employees. Stark tech distributes all 200 employees into different 'User Groups'. Now Stark tech wants to blocked specific websites for defined 'User Group' say 'MANAGERS' Stark tech challenges are: All ...