Gmail Security

ACTIONS REQUIRED

1. To reset the user's password, follow the steps in this Help Center article:https://support.google.com/a/answer/33319?hl=en
Inform the user of their new temporary password, and ask them to set a new password. (It should not be a password used with any other sites.)

2. To help check whether their account might have been compromised, advise users to:
  • Check for filters and forwarding rules so that email is not being forwarded to suspect addresses.
  • Check to make sure their signature has not been changed.


BEST PRACTICES FOR SECURITY

As an administrator, you may also consider implementing additional security features for your Google Apps domain:

1. Enrolling your domain in 2-step verification, which offers an additional layer of user authentication:https://support.google.com/a/answer/175197?hl=en
2. Completing the Gmail Security Checklist:https://support.google.com/mail/checklist/2986618?hl=en&rd=1
Additional information about the activity of affected user accounts can be obtained by using the Audit API:https://developers.google.com/admin-sdk/email-audit/?csw=1

Sincerely,
The Google Apps Team




Posted by FD
Creation date: 5/25/2016 1:49 PM     Updated: 5/25/2016 1:49 PM