Google Apps Security

Google Apps for Business is intrinsically secure, however many organizations require additional security and authentication features for Google Apps to make it more suitable for their enterprise environment. Megha IT Consulting's Google Apps security solutions include Single Sign-On for Google Apps, email compliance and protection with Google Message Security, email capture and archive with Google Message Discovery and blocking consumer Gmail while allowing access to Google Apps for Business.  Manage and enhance the productivity, security and compliance of Google Apps for Business with Google Apps security solutions from Megha IT Consulting.




Megha IT Consulting provides Single Sign-On (SSO) installation & configuration to customers using Google Apps for Business using SAML 2.0 based SSO API's that integrates into your LDAP infrastructure (OpenLDAP, Active Directory, any LDAP compliant servers).

LDAP (Lightweight Directory Access Protocol) is a networking protocol for querying and modifying directory services running over TCP/IP.

Single Sign-On (SSO) enables the process by which a user logs into one web service and is subsequently granted access to additional web services. SSO reduces the number of credentials in circulation and centralizes user management.

The benefits of SSO to the business are greater security, simplified user management, greater usability and improved productivity.

With SSO we ensure that users only access their data from within the firewall, for those users that need external access they are provided with another password, or connect to the SSO server behind the firewall with a VPN connection.


Blocking Consumer Gmail prevent users from signing in to Google services using any accounts other than the accounts you provided them with. For example, you may not want them to use their personal Gmail accounts or a Google Apps account from another domain.

A common means of blocking access to web services is using a web proxy server to filter traffic directed at particular URLs. This approach won’t work in this case, because legitimate traffic from a user’s Google Apps account goes to the same URL as the traffic you want to block.

Google services using specific Google accounts from your domain, use the web proxy server to add a header to all traffic directed to google.com; the header identifies the domains whose users can access Google services. Since most Google Apps traffic is encrypted, your proxy server also needs to support SSL interception

Since most Google Apps traffic is encrypted, your proxy server also needs to support SSL integration. The following are are two proxy servers known to support both SSL interception and HTTP insertions.