Description |
This article describes how to restrict the personal Gmail Account ,and allow to Specific Domains Email Google accounts. |
Scope | FortiGate. |
Solution |
Requirement: The firewall/policy has to be in Proxy-based inspection mode.
How it works:
The firewall will inject the HTTP header X-GoogApps-Allowed-Domains. It is also possible to inject multiple domains via the X-GoogApps-Allowed-Domains header.
Firewall Configuration: Follow the below article: Technical Tip: Restrict Google account usage to specific domains
Once configured, the specific domains Email on the Web-Filter. Configuration on CLI injected by firewall.
config web-proxy profile edit "Auto-web-proxy-profile_iwd4cg3tf" config headers edit 1 set name "X-GoogApps-Allowed-Domains" set content "abc.com, xyz.com" <----- The company domain hosted in Google mail services. next end next end
end
1. Remove all Google-related accounts under Exempt from SSL Inspection.
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.