This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Blocking accounts.google.com from non approved device using Cloud identity premium

Posted on 05-18-2022 08:18 AM
Mohit_Pandey
Bronze 2
Bronze 2
Reply posted on --/--/---- --:-- AM

Dear All,

I have blocked access to google services and few SAML Apps using context aware access.

Only COD or admin device can access the services.  However when some try to access accounts.google.com from an non COD/approved device google still allow users to login and change account information.   Any ideas or suggestions. This becomes a security breach.

Mohit Pandey

1 1 529
Topic Labels
1 REPLY 1

Posted on --/--/---- --:-- AM
goldyarora
Staff
Reply posted on --/--/---- --:-- AM

Context Aware Access is an authorization (not authentication) layer which can be applied to native Google Workspace (e.g Gmail, Drive, meet etc) and SAML apps where Google acts as an IdP.

You can't apply CAA on user profile, you may consider restricting profile editing from Workspace directory settings.

Top Labels in this Space
Top Solution Authors
View all