WorryFree Computers   »   [go: up one dir, main page]


What’s changing 
You can now use your mobile phone as a security key in the Advanced Protection Program for the enterprise. This means you can use your Android or iOS device’s built-in security key for 2-Step Verification, which makes it easier and quicker to protect high-risk users with our strongest account security settings.

Users can learn more and sign up for the Advanced Protection Program at g.co/advancedprotection

Who’s impacted Admins and end users

Why you’d use it 
The Advanced Protection Program for the enterprise enforces a package of several security policies, which can help protect the accounts of employees who are most at risk for targeted attacks. By adding the option to use your phone as a security key with this program, we hope more G Suite users will be able to take advantage of the protection it offers due to:

  • Simpler enrollment - Users can sign up quickly using devices they already have. 
  • Intuitive user experience - Users are familiar with the phone interface, and often already carry phones with them. 
  • Lower costs - This reduces the need to purchase security keys. 


Additional details Targeted attacks describe sophisticated, low volume handcrafted attacks that are often carried out by highly motivated professional or government backed groups. Employees at risk of targeted attacks that may benefit from the program include, for example, IT admins, executives, and employees in regulated industries such as finance or government.

The individual policies currently included in the Advanced Protection Program are also available to G Suite admins and users outside of the program. However, the Advanced Protection Program for the enterprise offers an easy-to-use bundle of our strongest account security settings

Getting started 
Admins: By default, users will be able to sign up for the Advanced Protection Program. You can disable it at the OU level. Visit the Help Center to learn more about managing the Advanced Protection Program in your organization.

End users: Android users can go directly to g.co/advancedprotection to enroll their phone as a security key. iPhone users must first activate the security key with Google’s Smart Lock app, then enroll in the Advanced Protection Program.

Rollout pace 
  • This feature is available now for all users. 


Availability 
  • Available to all G Suite customers 


Resources 
Labels: , , ,

What’s changingWe’re adding an option to use your iPhone as a security key for your Google Account. Security keys provide the strongest form of 2-Step Verification (also known as two-factor authentication or 2FA) to help protect your account against phishing, and are an essential part of the Advanced Protection Program for the enterprise. To use your iPhone as a security key, you need to install the Google Smart Lock app.

Read more about this launch in our Security Blog post, or use our Help Center to learn more about security keys and 2-Step Verification. Also see our other announcement today - Use phones as security keys in the Advanced Protection Program.


Who’s impactedAdmins and end users


Why you’d use it2-Step Verification adds another layer to your account security, making it more resistant to phishing and account takeover attacks. By adding the option to use iPhones as a security key, we’re making the strongest form of phishing protection more accessible and convenient. As a result, we hope you’ll be able to implement Advanced Protection in your organization more quickly, while also minimizing user training and overall costs.

We previously announced that you can use the security key built into your Android phone, in addition to physical security keys, including Google’s Titan Security Keys.

We also announced today that you can use phones as security keys in the Advanced Protection Program for the enterprise. We hope that these launches bring the added protection of security keys to more users, including making it easier to enrol in the Advanced Protection Program, and helps ensure that all users have access to more convenient forms of security.


Additional details
  • The iPhone security key is enabled through the Google Smart Lock app.
  • Installation of the Google Smart Lock app is only available on devices running iOS 10.0 and up.
  • The security keys on iPhones are compatible with Bluetooth-enabled Chrome OS (version 79 and up), iOS, macOS, or Windows 10 devices with a Chrome browser.


Getting started


Rollout pace
  • This feature is available now for all users

Availability
  • Available to all G Suite customers


Resources



Labels: , , ,

Quick launch summaryYou can now present high-quality video content with audio in your meeting using the HDMI cable included with Hangouts Meet hardware kits.

Please note: Hangouts Meet already supported using this HDMI cable for local presentations. This additional functionality allows users to present into meetings with remote participants as well.

Getting startedAdmins: There is no admin control for this feature.
End users: This feature will be ON by default.

Rollout paceAvailability
  • Available to all G Suite customers
ResourcesRoadmap

Labels: ,

What’s changingWe’re making it easier for super admins to recover their own passwords, as well as updating the look of some basic security settings in the Admin console.

Going forward, super admins who enable “Super admin account recovery” at Admin console > Security > Account recovery can recover their own accounts by clicking the “Forgot password?” link on the sign-in page (provided they’ve added recovery options to their accounts).

Super admin account recovery setting in the Admin console

In addition, we’re starting to gradually migrate your other security settings to a more streamlined, card-based interface. These changes will take place slowly over time, and most will have no impact on the configuration of your settings themselves. If any updates require changes to your workflows, we’ll let you know on the G Suite Updates blog and/or via email.

Who’s impactedAdmins

Why you’d use itPreviously, super admins in many organizations who were locked out of their accounts had to contact another super admin or Google Support to recover their password. This new setting makes it much easier for super admins to get back into their accounts and back to work.

Getting startedAdmins: For most current and all new customers, the Super admin account recovery feature will be OFF by default and can be enabled at the domain, OU, or group level. If you’re an existing customer with fewer than three super admins or 500 users, however, the setting will be ON by default, to match previous behavior. Visit the Help Center to learn more about turning Super admin account recovery on or off for your organization.

Rollout pace
  • Rapid Release domains: Extended rollout (potentially longer than 15 days for feature visibility)] starting on January 13, 2020
  • Scheduled Release domains: Extended rollout (potentially longer than 15 days for feature visibility)] starting on January 13, 2020

Availability
  • Available to all G Suite customers

Resources
Labels: , , ,

Update
[February 14, 2020] We've adjusted the rollout for this feature. Scheduled Release domains will begin a gradual rollout (up to 15 days for feature visibility) starting on February 19, 2020. Rollout for Rapid domains is complete.

Quick launch summary When creating a copy of an existing Google Slides presentation, you'll now be able to:
  • Select specific slides to copy instead of the whole deck. 
  • Remove the speaker notes from the copy. 
This feature makes it easier to parse out and share the most relevant content with your team, audience, or other stakeholders.

Getting started End users: To remove speaker notes from a full-deck copy, go to File > Make a Copy > Entire Deck and check “Remove all speaker notes.”

Removing speaker notes from presentation copy



To copy only certain slides, go to File > Make a Copy > Selected Slides. There, you’ll also have the option to remove all speaker notes from the selected slides.

Select specific slides to copy instead of the whole deck

Rollout pace 

Availability 
  • Available to all G Suite customers
Labels: ,

Quick launch summary You can now “pull out” and highlight a slice from a pie or donut chart in Google Sheets. This feature gives you more ways to control the look of your charts and better display the most important data in Sheets.


Getting started End users: This feature is available by default. Visit the Help Center article to learn more about using this feature.

Rollout pace

Availability 
  • Available to all G Suite customers 

Resources 
Labels: ,

What’s changingVideo calling from Hangouts Meet and classic Hangouts is now controlled by the same setting. This means that the setting in the Admin console that controls classic Hangouts video calling now also controls Hangouts Meet.
Who’s impactedAdmins
Why it mattersBy combining these settings, we’re making it easier for you to manage all video calling within your organization.
Getting startedAdmins: You can find the new, consolidated setting in the Admin console at Apps > G Suite > Settings for Google Hangouts > Meet settings. Learn more in the Help Center. The new setting will respect your previous setting. For new G Suite customers, video calling will be enabled by default.

End users: There is no end user setting for this feature.
Rollout pace

Availability
  • Available to all G Suite customers

Resources


Labels: , , , ,

What’s changing We’re adding new controls for how the “Sender Attribution for Shared Mailboxes” is displayed. Currently, sender attribution is always enabled — this will remain the default setting unless disabled by the admin or the end user.

For end users, there’s a new setting in Gmail where you can specify what information is included in the email header of messages sent by delegates.

For admins, there’s a new setting in the admin console that allows you to hide all attribution for shared mailboxes in your domain or organizational unit (OU). This will override and disable the user setting in Gmail.

Who’s impacted
Admins and end users


Why you’d use it Organizations use shared mailboxes in Gmail in multiple ways. For example, if an executive admin is responding on behalf of a CEO, from the CEO’s mailbox, sender attribution makes it clear who specifically drafted and sent the email.

Or, if you use an info@company.com mailbox to communicate with customers, customers will view all responses as equally valid, without knowing whether they were sent by sally@company.com, or jim@company.com.

With these new settings, you can now control and customize how attribution is handled for your domain, by OU, or on an individual user level.

Getting started Admins: Sender attribution is on by default and can be disabled at the OU or domain level. The new setting can be found in the Admin console under Apps > G Suite > Gmail > User settings > Mail Delegation. Note that the default setting will be “Allow users to customize this setting” and “Show the account owner and delegate who sent the email.”

Settings for Mail Delegation in the Admin console

End users: Sender attribution is ON by default. You can view and set sender attribution parameters by going to Settings > Account > Grant access to your account in Gmail. If your admin has hidden sender attribution for your domain or OU, no action can be taken.

End user settings for sender attribution in Gmail


If disabled at the OU or domain level, end users can take no action in Gmail

Rollout pace

Availability
  • Available to all G Suite customers

Resources 


Labels: , , ,

Quick launch summary We’re making two improvements which will make Access Transparency logs more useful for G Suite admins. Specifically you can now:

  • Choose to receive email alerts when specific Access Transparency logs are created. 
  • See any support ticket numbers associated with requests in the Audit log report. 

Access Transparency for G Suite provides more visibility into actions taken by Google staff related to your data. Learn more about how Access Transparency can help increase trust in cloud data security

Access Transparency logs describe the affected resource, the time of the action, the reason for the action, and more. With this launch, you can create automated alerts to get notified via email when specified criteria related to Access Transparency are met and an associated log is created. To get started, create an alert based on the "Event Name = Access" filter.

Learn more about Access Transparency logs, or how to set up alerts.


Sample email alert when an Access Transparency log is created 

You can see support ticket numbers in the Access Transparency audit log 


Getting started 
  • Admins: Email alerts will be OFF by default, support ticket information in the audit log will be ON by default. Learn more about Access Transparency logs, or how to set up alerts
  • End users: Feature is not visible to end users. 

Rollout pace 
  • This feature is available now for all users. 

Availability 
  • Available to G Suite Enterprise and G Suite Enterprise for Education customers. 
  • Not available to G Suite Basic, G Suite Business, G Suite for Education, and G Suite for Nonprofits customers. 

Roadmap 



Stay up to date with G Suite launches
Labels: , , ,


Check out the latest "What's New in G Suite" launch recap (pdf) for a roundup of all G Suite launches from December 2019.

Archive and translated versions (coming soon for December issue)

Stay up to date with G Suite launches
Labels: ,