{"id":5627,"date":"2018-12-27T10:50:02","date_gmt":"2018-12-27T03:50:02","guid":{"rendered":"http:\/\/gcloudvn.wam.vn\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/"},"modified":"2023-11-30T16:26:14","modified_gmt":"2023-11-30T09:26:14","slug":"google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi","status":"publish","type":"post","link":"https:\/\/gcloudvn.com\/en\/kienthuc\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/","title":{"rendered":"Google Cloud Identity \u2013 Identity recognition &amp; device management"},"content":{"rendered":"<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">If you have ever heard of SaaS (Software as a Service), PaaS (Platform as a Service), or IaaS (Infrastructure as a Service), you probably already imagine the similarities between these services. That&#039;s the model <\/span><b>X-as-a-service<\/b><span style=\"font-weight: 400;\"> &#8211; v\u1ed1n \u0111\u00e3 kh\u00f4ng c\u00f2n m\u1edbi l\u1ea1 g\u00ec trong th\u1eddi \u0111\u1ea1i c\u00f4ng ngh\u1ec7 th\u00f4ng tin. C\u00e1c m\u00f4 h\u00ecnh n\u00e0y cung c\u1ea5p ph\u1ea7n m\u1ec1m, n\u1ec1n t\u1ea3ng hay h\u1ea1 t\u1ea7ng cho c\u00e1c c\u00f4ng ty kh\u00e1ch h\u00e0ng d\u01b0\u1edbi d\u1ea1ng m\u1ed9t d\u1ecbch v\u1ee5 &#8211; t\u1ee9c l\u00e0 thay v\u00ec t\u1ef1 x\u00e2y d\u1ef1ng h\u1ec7 th\u1ed1ng, ph\u1ea7n m\u1ec1m, t\u1ef1 qu\u1ea3n l\u00fd th\u00ec doanh nghi\u1ec7p c\u00f3 th\u1ec3 s\u1eed d\u1ee5ng d\u1ecbch v\u1ee5 n\u00e0y t\u1eeb b\u00ean th\u1ee9 ba (V\u00ed d\u1ee5: thay v\u00ec t\u1ef1 x\u00e2y h\u1ec7 th\u1ed1ng email tr\u00ean server c\u1ee7a m\u00ecnh th\u00ec c\u00f4ng ty c\u00f3 th\u1ec3 l\u1ef1a ch\u1ecdn d\u00f9ng Gmail doanh nghi\u1ec7p do Google cung c\u1ea5p). V\u00e0 <strong>Google Cloud Identity<\/strong> is a kind of<strong> Identity as a Service<\/strong> \u2013 identity services (credentials to applications) provided by Google. This article will help you learn some more specifics about Google&#039;s Cloud Identity.<\/span><\/p>\n<p><strong>&gt; Reference:\u00a0<\/strong><\/p>\n<ul>\n<li><a href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/cloud-identity-quan-ly-nguoi-dung-thiet-bi-va-ung-dung-tap-trung\/\">Cloud Identity: Centralized User, Device, and Application Management<\/a><\/li>\n<li><a href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/kiem-soat-thoi-luong-phien-lam-viec-cho-google-cloud-console-and-gcloud-cli\/\">Session duration control for Google Cloud Console and gcloud CLI<\/a><\/li>\n<\/ul>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_80 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewbox=\"0 0 24 24\" version=\"1.2\" baseprofile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/#1_Cloud_Identity_la_gi\" >1. What is Cloud Identity?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/#2Cac_phien_ban_Cloud_Identity\" >2. Cloud Identity versions?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/#3_Neu_ban_la_Admin_G_Suite\" >3. If you are a G Suite Admin<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/#4_Neu_ban_la_admin_GCP\" >4. If you are a GCP admin<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/#5_Thong_ke_quyen_kiem_soat_danh_cho_Admin\" >5. Control Statistics for Admin<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/#Device_Management_%E2%80%93_Quan_ly_thiet_bi\" >Device Management \u2013 Device Management<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/#Directory_Management_%E2%80%93_Quan_ly_danh_ba\" >Directory Management \u2013 Manage contacts<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/#SSO_va_quan_ly_nguoi_dung_tu_dong\" >SSO and automatic user management<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/google-cloud-identity-nhan-dang-danh-tinh-quan-ly-thiet-bi\/#Bao_cao\" >Report<\/a><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"1_Cloud_Identity_la_gi\"><\/span><span style=\"color: #000080;\"><b>1. What is Cloud Identity?<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Cloud Identity is an Identity as a Service and Enterprise Mobility Management (EMM) service. Cloud Identity provides businesses with a service that helps control login and access to documents and applications. Businesses can use this service together <a href=\"https:\/\/gcloudvn.com\/en\/google-workspace\/\">Workspace G Suite<\/a> or use individually, separate from G Suite (stand-alone product). As an admin, you will be able to manage users, applications and devices from a single place \u2013 Google Admin Console.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">In a word, Cloud Identity allows businesses to create<\/span><b> account <\/b><span style=\"font-weight: 400;\">for employee. These accounts will be used by employees to log into the system and access the resources of that business. The difference: these are merely accounts, a<\/span><b> identification information <\/b><span style=\"font-weight: 400;\">or like one<\/span><b> &quot;Access Card&quot; <\/b><span style=\"font-weight: 400;\">that the user provides to the system in order to <\/span><\/p>\n<ul style=\"text-align: justify;\">\n<li style=\"font-weight: 400;\"><b>Identity verification<\/b><span style=\"font-weight: 400;\"> (I am employee A of company B) <\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Verify my access to company resources (I have access to department C data) <\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Unlike a G Suite account or a free Gmail account: If it&#039;s just a Cloud Identity account, users will not have Gmail, Drive, ... applications to use. <\/span><\/li>\n<\/ul>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"2Cac_phien_ban_Cloud_Identity\"><\/span><span style=\"color: #000080;\"><b>2. Cloud Identity versions?<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Currently, users can choose one of the two versions below:<\/span><\/p>\n<p style=\"text-align: justify;\"><b>Cloud Identity Premium:<\/b><span style=\"font-weight: 400;\"> This release brings enterprise-wide security, application management, and device management services, including automated user management services, app whitelisting, and setting automation rules for device management.<\/span><\/p>\n<p style=\"text-align: justify;\"><b>Free Cloud Identity:<\/b><span style=\"font-weight: 400;\"> The free version includes basic end-point management and identity management services. For users who don&#039;t need G Suite services, like Gmail or Google Drive, they get free Google accounts. You can use your Cloud Identity account with other Google services such as Google Cloud Platform (GCP), Chrome, Android enterprise, and an app store from third parties.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"https:\/\/support.google.com\/cloudidentity\/answer\/7431902\" target=\"_blank\" rel=\"nofollow noopener\"><span style=\"font-weight: 400;\">Compare the two versions in detail here. <\/span><\/a><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"3_Neu_ban_la_Admin_G_Suite\"><\/span><span style=\"color: #000080;\"><b>3. If you are a G Suite Admin<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">A G Suite account (G Suite license) is only necessary for users who need to use the applications included in G Suite (such as Gmail, Drive, Hangouts, ...). To manage users <\/span><b>Are not<\/b><span style=\"font-weight: 400;\"> If you have a need to use G Suite, you can create free Cloud Identity accounts for them.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">In most cases, free Cloud Identity users can use the same services as G Suite users, such as Single Sign-On (SSO) or 2-Step Verification (2SV).<\/span><\/p>\n<figure id=\"attachment_16180\" aria-describedby=\"caption-attachment-16180\" style=\"width: 500px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-16180 size-full\" src=\"https:\/\/gcloudvn.com\/wp-content\/uploads\/2018\/12\/G-Suite-Cloud-Identity.png\" alt=\"Free Cloud Identity can use the same services as G Suite users\" width=\"500\" height=\"306\" \/><figcaption id=\"caption-attachment-16180\" class=\"wp-caption-text\">Free Cloud Identity can use the same services as G Suite users<\/figcaption><\/figure>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"4_Neu_ban_la_admin_GCP\"><\/span><span style=\"color: #000080;\"><b>4. If you are a GCP admin<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Personal user accounts (such as free Gmail accounts or email accounts with corporate addresses), are unmanaged accounts and are not under your control. If developers in your enterprise use unmanaged accounts to use resources <a href=\"https:\/\/gcloudvn.com\/en\/google-cloud-platform\/\">GCP<\/a>, you can create their own Cloud Identity. Specifically, these accounts will be separate from G Suite accounts \u2013 allowing you to manage all employees and users across the enterprise, directly from the Admin Console.<\/span><\/p>\n<figure id=\"attachment_16181\" aria-describedby=\"caption-attachment-16181\" style=\"width: 500px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-16181 size-full\" src=\"https:\/\/gcloudvn.com\/wp-content\/uploads\/2018\/12\/GCP-Cloud-Identity.png\" alt=\"GCP Cloud Identity \" width=\"500\" height=\"306\" \/><figcaption id=\"caption-attachment-16181\" class=\"wp-caption-text\"><em>GCP Cloud Identity<\/em><\/figcaption><\/figure>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"5_Thong_ke_quyen_kiem_soat_danh_cho_Admin\"><\/span><span style=\"color: #000080;\"><b>5. Control Statistics for Admin<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h3 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Device_Management_%E2%80%93_Quan_ly_thiet_bi\"><\/span><b>Device Management \u2013 Device Management<\/b><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul style=\"text-align: justify;\">\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Enforce the use of a screen lock or password to protect devices.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Remote device wipe: Delete business applications and data on mobile devices. For example, business accounts, work profiles, etc.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">View and search for devices, extract data to CSV files.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Whitelist recommended apps and make them available to users for them to install.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Manage enterprise-owned devices.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">View events on mobile devices.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Set rules to automate mobile device management.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Create a work profile on your Android device to separate personal and business data.<\/span><\/li>\n<\/ul>\n<h3 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Directory_Management_%E2%80%93_Quan_ly_danh_ba\"><\/span><b>Directory Management \u2013 Manage contacts<\/b><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul style=\"text-align: justify;\">\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Manage account security using two-step authentication (2SV) and security keys.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">View and manage user privacy settings.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Set session length for enterprise users (users of accounts with business domains).<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Google Security Center.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Password recovery policy: Admin can choose to let users recover their own password or force them to contact admin to recover password.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Manage Chrome browser.<\/span><\/li>\n<\/ul>\n<h3 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"SSO_va_quan_ly_nguoi_dung_tu_dong\"><\/span><b>SSO and automatic user management<\/b><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul style=\"text-align: justify;\">\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Install SSO for Cloud applications.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Automate user management between Cloud applications.<\/span><\/li>\n<\/ul>\n<h3 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Bao_cao\"><\/span><b>Report<\/b><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul style=\"text-align: justify;\">\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Get an overview of user statistics and trends for domains using G Suite.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Assess the level of security and threats your business is facing, and find out specifically which users are at risk.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Access all data from Security, Apps usage activity and Highlight pages in one consolidated report.<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">View admin activity log.<\/span><\/li>\n<\/ul>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">As can be seen, with Google Cloud Identity, businesses can improve data security. It helps to unify and consolidate user access control in a single platform, thereby giving IT admins a quality management solution. When an employee leaves, the IT admin can remove their access from the admin console and ensure that this action takes effect. Currently, you can use this service for free or combine it with G Suite to manage members in your company.<\/span><\/p>\n<p style=\"text-align: right;\"><strong>Update: <a href=\"https:\/\/gcloudvn.com\/en\/\">Gimasys<\/a><\/strong><\/p>","protected":false},"excerpt":{"rendered":"<p>Cloud Identity l\u00e0 m\u1ed9t d\u1ecbch v\u1ee5 nh\u1eadn d\u1ea1ng danh t\u00ednh (Identity as a Service) v\u00e0 qu\u1ea3n l\u00fd thi\u1ebft b\u1ecb di \u0111\u1ed9ng doanh nghi\u1ec7p (Enterprise Mobility Management &#8211; EMM). Cloud Identity cung c\u1ea5p cho doanh nghi\u1ec7p m\u1ed9t d\u1ecbch v\u1ee5 gi\u00fap ki\u1ec3m so\u00e1t vi\u1ec7c \u0111\u0103ng nh\u1eadp, truy c\u1eadp t\u00e0i li\u1ec7u, \u1ee9ng d\u1ee5ng<\/p>","protected":false},"author":1,"featured_media":5628,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-5627","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-kienthuc","entry","has-media"],"_links":{"self":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/posts\/5627","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/comments?post=5627"}],"version-history":[{"count":0,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/posts\/5627\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/media\/5628"}],"wp:attachment":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/media?parent=5627"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/categories?post=5627"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/tags?post=5627"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}