7. How Apps Control Section Works?


Leverage CloudCodes for Business Console to extend your security policy. The console offers administrators control not only web applications but also Mobile. 


Apps Control includes

7.1 Web

7.2 Mobile


7.1 Web

To apply Web Policy > Go To Apps Control→- Web


                                           

Image 1


Click on ADD POLICY to get started with creation of the policy





                                           

                                                           


Image 2



To get started with the creation of the new policy, fill in the policy details:

  • Title: Name your policy identifies it later when you want to make changes quickly

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re-enable it, you can check/uncheck “Enabled” option as shown above

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy

  • Risk: Select risk factor for policies according to the severity - High, Medium and Low. This data is reflected on Dashboard in Violation Section

Click on SAVE to save the policy created


1.1 Browser Restriction: 

  • Browser Restriction allows administrators to compel users to access their accounts only from a particular browser

  • While configuring this feature you can select the browsers and their versions to be allowed

  • Only one version per browser can be specified and the users using browser versions below the specified one would be blocked. Users using specified version and above would be allowed

  • This policy can be applied on Users as well as on OU’s

                                                             

Image 3



1.2 IP Restriction: 

  • Restrict a particular user or a group of users to access Cloud-based Apps only from specific IP address

  • Import User & IP details in CSV format

  • Export registered user & IP mappings

  • Admin can create many User-based and OU based IP Restriction policies

  • Add unlimited IPs & users in the policy

                                                               

Image 4



Click on ADD POLICY to get started with creation of the new policy or fill in the policy details


  • Title: Name your policy identify it later when you want to make changes quickly.

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re-enable it, you can check/uncheck “Enabled” option as shown above.

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy

  • Risk: Select risk factor for policies according to the severity - High, Medium and Low. This data is reflected on Dashboard in Violation Section

Click on SAVE to save the policy created.

 

IP restriction policy will not apply for the local IPs, it should be always public IP(Static IP). If there is a used proxy for your organization then admin can put your proxy IP as well.


Note: At this point, admin can set Proxy or Public IP setting on a domain level. Once this setting is applied all the policies have to follow the domain level setting.

 

We support Dynamic IP too, but we require range of dynamic IP from internet service provider

 

For your public IP address give “my ip” in Google search, this will show your public IP address. Refer the below screenshot. 


                                                          Image 4.png

Image 5


For your proxy IP address go to www.whatismyip.com site, you will find the information as shown below


                                                                     Image 5.png



Image 6

  • You can add User ID & IP Address mapping manually or upload the csv by clicking on ADD USER or IMPORT CSV csv button

                                                                 

Image 7

  • For OU based IP restriction, Admin can select the OU from the drop-down that is present Business Apps

                                                               

Image 8


1.3. Time Restriction: 

 

Time restriction provides the following features:

  • Restrict a particular user or a group of users to access Cloud-based Apps during a specific Time range

  • Import user in CSV format

  • Export registered users 

  • Admin can create many user based and OU based Time Restriction policies (Users cannot be duplicated across policies)

  • Add unlimited time range & users in the policy

                                                          Image 9.png

Image 9


Click on ADD POLICY to get started with creation of the new policy or fill in the policy details.

  • Title: Name your policy to identify it later when you want to make changes quickly.

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re-enable it, you can check/uncheck “Enabled” option as shown above.

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy

  • Risk: Select risk factor for policies according to the severity - High, Medium and Low. This data is reflected on Dashboard in Violation Section

  • Check “Enable Time Restriction” policy to users   

  • Select the TimeZone on which you want to apply time restriction policy

  • Select From and To hours (if required, admin can also add minutes) 

  • Select Force Logout check box if you want to users logged out automatically after the time range

  • Policy type should be users based or OU based. If you policy type user based, you will add single user or bulk user (import CSV) in the policy and for OU based you will be able to select your OU in CloudCodes For Business Apps

Click on SAVE to save the policy created.


1. 4. Device Restriction: 

 

This feature includes:

  • Enables the admin to lock the user to approved Laptop/ Desktop using MAC ID based restriction

  • Restrict users to one or more Laptop/Desktop

  • Self Service roll out

Click on ADD POLICY to get started with creation of the new policy and fill in the policy details 

  • Title: Name your policy identify it later when you want to make changes quickly.

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re-enable it, you can check/uncheck “Enabled” option as shown above.

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy

  • Risk: Select risk factor for policies according to the severity - High, Medium and Low. This data is reflected on Dashboard in Violation Section

                                                         

Image 10

  • Check Enable checkbox to enable the policy on the user

  • Check Enable MAC Binding is to add the physical Device ID in the policy

  • Policy type should be users based or OU based. If you policy type user based, you will add single user or bulk user (import CSV) in the policy and for OU based you will be able to select your OU in CloudCodes For Business Apps

Click on SAVE to save the policy created


1.5.  Geo Restriction:



In this policy features,

  • Admin can restrict user geographically

  • Geolocation can be set country-wise as well as specific location wise

                                                     

Image 11



Click on ADD POLICY to get started with creation of the new policy and fill in the policy details 

  • Title: Name your policy to identify it later when you want to make changes quickly.

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re-enable it, you can check/uncheck “Enabled” option as shown above.

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy

  • Risk: Select risk factor for policies according to the severity - High, Medium and Low. This data is reflected on Dashboard in Violation Section

                                                             

Image 12

  • Enable the policy by checking “Enable” checkbox

  • Apply the policy country wise by checking radio button and select the country according

  • Then if admin wants can add the geographical location by adding Latitude, Longitude, and Radius of particular location


Click “SAVE” to save the policy created


7.2 Mobile


User or Administrator can download our mobile application - CloudCodes For Business Mobile Application on Playstore/ Apple Store


Note: The Mobile policy will be applied to Mobile application once the user has saved policies through (SSO1) CloudCodes For Business Console.


To apply Mobile Policy > Go To Apps Control→ Mobile


Click on ADD POLICY to get started with creation of the policy


                                                         

Image 1


To get started with the creation of the new policy, fill in the policy details.

  • Title: Name your policy to identify it later when you want to make changes quickly.

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re-enable it, you can check/uncheck “Enabled” option as shown above.

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy


                                                               

Image 2


Admin can add mobile application restriction for users or OUs


  1. Network: This feature includes

  • Restricting user with Network

  • Restricting user with WiFi

To get started with creation of the new policy, fill in the policy details.

 

                                                               

Image 3 (Copy image 2)


  • Title: Name your policy identify it later when you want to make changes quickly

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re-enable it, you can check/uncheck “Enabled” option as shown above

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy

                                                           

Image 4

  • Check the required Network and Wi-Fi to access mobile app and click “Save” to save the changes for Network

  • Policy type should be users based or OU based. If you policy type user based, you will add single user or bulk user (import CSV) in the policy and for OU based you will be able to select your OU in CloudCodes For Business 


  1. WiFi

To get started with the creation of the new policy, fill in the policy details.

 

                                                       

 

Image 5 (Copy image 2)

  • Title: Name your policy identify it later when you want to make changes quickly

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re enable it, you can check/uncheck “Enabled” option as shown above

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy

  • Click “Add WiFi”

                                                              Image 5.png

Image 6


  • Admin can add Name and MAC Address and click “Add Wifi”

                                                                 C:\Users\rajashree\Desktop\SSO1\Apps Control\Mobile\Image 6.png

Image 7

  • Policy type should be users based or OU based. If you policy type user based, you will add a single user or bulk user (import CSV) in the policy and for OU based you will be able to select your Google Apps OU in CloudCodes For Business Apps.

  1. IP Restriction: This policy features,

  • Restrict a particular user or a group of users to access Cloud-based Apps only from specific IP address

  • Admin can create many User-based and OU based IP Restriction policies

  • Add unlimited IPs & users in the policy

To get started with the creation of the new policy, fill in the policy details.


                                                           

Image 8  (Copy image 2)

  • Title: Name your policy to identify it later when you want to make changes quickly.

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re-enable it, you can check/uncheck “Enabled” option as shown above.

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy

  • Click “Add IP”


                                                        Image 7.png

Image 9


  • Admin can add Name, Mode, IP Range From and IP Range To. Click “Add IP” to save the details


                                                                 Image 9.png

Image 10

  • Policy type should be users based or OU based. If you policy type user based, you will add a single user or bulk user (import CSV) in the policy and for OU based you will be able to select your Google Apps OU in CloudCodes For Business Apps.

  1. Time Restriction:

Time restriction provides the following features:

  • Restrict a particular user or a group of users to access Cloud-based Apps during a specific Time range

  • Admin can create many user based and OU based Time Restriction policies (Users cannot be duplicated across policies)

To get started with the creation of the new policy, fill in the policy details.

  • Title: Name your policy to identify it later when you want to make changes quickly.

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re-enable it, you can check/uncheck “Enabled” option as shown above.

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy

                                                                                                                                                                                                                                                                                                            Image 9.png

Image 11





  • Check Enable Time Restriction to enable the policy to users   

  • Select the TimeZone on which you want to apply time restriction policy

  • Select From and To hours (if required, admin can also add minutes) 

  • Checking upon the Next Day, the user will not get automatically log out after 12 PM at night

  • Select Force Logout check box if you want to users logged out automatically after the time range

  • Policy type should be users based or OU based. If you policy type user based, you will add single user or bulk user (import CSV) in the policy and for OU based you will be able to select your OU in CloudCodes For Business Apps

Click on SAVE to save the policy created



  1. Geolocation: In this policy features,

  • Admin can restrict user geographically

  • Geolocation can be set country-wise as well as specific location wise

To get started with the creation of the new policy, fill in the policy details.

                                                                 

Image 12 (Copy image 2)

   

  • Title: Name your policy to identify it later when you want to make changes quickly.

  • Description: Short description for helping understand the policy if more than one admin is managing the account

  • Enabled: For some reason, if you want the policy to be disabled for some time and re-enable it, you can check/uncheck “Enabled” option as shown above.

  • Valid Always: You can decide the validity of the policy with Valid Always button. Toggling this you can say whether you want a policy for a stipulated time or a policy which is always applied

  • Valid From and Valid To: If Valid Always is off, then you will have to provide the date range for which the policy needs to be applied. This way admin need not manually turn off the policy

                                                    Image 10.png

Image 13

  • Enable the policy by checking “Enable” checkbox

  • Apply the policy country wise by checking radio button and select the country according

  • Then if admin wants can add the geographical location by adding Latitude, Longitude, and Radius of particular location


Click “SAVE” to save the policy created