Can We Allow Only One Facebook Id to login to Facebook Website for all users via SafeSquid-SWG ( Client Discussion #7 )
Posted: Tue Apr 28, 2020 7:45 am
Hello All,
Their are few situation where the user is interested in some custom policy making as per their business requirements.
As SafeSquid provides granular approach in policy making, it is just matter of Identification of the Application inorder to apply policy.
Before Actually proceeding let's first understand the Problem properly and why companies have such requirement.
In a Corporate Organization, depending upon what the organization does, they have a marketing team to demonstrate their products or services in the digital works.
We can call then Digital Marketing Team, Sales Team etc anyone who needs Social Networking Platform to advertise their Products Or Services.
And Inorder to advertise they need access to Social Networking Platform, they access the companies Social Networking Account to advertise the products by videos , images , posts , pages etc and therefore access to Social Networking Sites is a must.
But if Social Networking site access is provided then the user can login via thier own id as well resulting in Corporate Policy
Restriction Violation.
As we all know, access social networking sites in corporate
Environment is a company Violation.
Inorder to use it for their business requirements it might end up unnecessary wrong usage and a breach in corporate policy making.
Inorder to do that Companies need a way to Restrict login to websites only via specific user.
Like only login to Facebook via a Specific ID ( Company's FaceBook ID )
And when the user tries to login via their personal ID then they are not allowed to do so.
This Corporate Level Restrictions helps companies to mange their business as well as apply necessary Restrictions.
Here below we have one such Scenario, where the client required custom policy.
-------------------------
Client Question:
-------------------------
We have a Important Requirement to only allow one Facebook ID to all the Marketing users, so that they should login using one facebook id and publish all the necessary business requirements.
User should not be able to login using any other Facebook ID.
--------------
Solution:
--------------
Yes, we can create policies where we can block all users to login to a particular website or to all the websites.
As well as, the other way around Allow specific users to login to particular websites.
In your case, Allow Specific Users to Login to Facebook
To do so we need to use Content Modifier feature of SafeSquid-SWG.
First we will Identify the Post Request that Facebook use to POST Authentication Details.
Note: SafeSquid already provides a set of Application Signatures, Which can easily Identify Facebook Features like Login, Facebook Games, Facebook Chat, Facebook Like Etc. and all
But in this, we will create our Own Signature to Identify Facebook Login Request.
To do this we will use Request-Types
STEP 1:
---------------
Create a Request-Type to Identify Facebook Login
-------------------------------------------------------------------------------
Specify the Below Parameters and create a Request-Type
Over here,
In Method I have selected “POST”
In Host Name Field I have Specified “facebook.com”
And in File: “/login/device-based/regular/login/”
And A Name to the Request-Type as Facebook Login
----- RequestTypes Edit ------
After saving the Policy will look as shown below:
---- Request Types Save -----
This Above Request-Type Will Identify Facebook Login Activity.
[Working: The Request-Type will be applied to a POST REQUEST that is made to ‘facebook.com’ with File Path: “/login/device-based/regular/login/”]
Their are few situation where the user is interested in some custom policy making as per their business requirements.
As SafeSquid provides granular approach in policy making, it is just matter of Identification of the Application inorder to apply policy.
Before Actually proceeding let's first understand the Problem properly and why companies have such requirement.
In a Corporate Organization, depending upon what the organization does, they have a marketing team to demonstrate their products or services in the digital works.
We can call then Digital Marketing Team, Sales Team etc anyone who needs Social Networking Platform to advertise their Products Or Services.
And Inorder to advertise they need access to Social Networking Platform, they access the companies Social Networking Account to advertise the products by videos , images , posts , pages etc and therefore access to Social Networking Sites is a must.
But if Social Networking site access is provided then the user can login via thier own id as well resulting in Corporate Policy
Restriction Violation.
As we all know, access social networking sites in corporate
Environment is a company Violation.
Inorder to use it for their business requirements it might end up unnecessary wrong usage and a breach in corporate policy making.
Inorder to do that Companies need a way to Restrict login to websites only via specific user.
Like only login to Facebook via a Specific ID ( Company's FaceBook ID )
And when the user tries to login via their personal ID then they are not allowed to do so.
This Corporate Level Restrictions helps companies to mange their business as well as apply necessary Restrictions.
Here below we have one such Scenario, where the client required custom policy.
-------------------------
Client Question:
-------------------------
We have a Important Requirement to only allow one Facebook ID to all the Marketing users, so that they should login using one facebook id and publish all the necessary business requirements.
User should not be able to login using any other Facebook ID.
--------------
Solution:
--------------
Yes, we can create policies where we can block all users to login to a particular website or to all the websites.
As well as, the other way around Allow specific users to login to particular websites.
In your case, Allow Specific Users to Login to Facebook
To do so we need to use Content Modifier feature of SafeSquid-SWG.
First we will Identify the Post Request that Facebook use to POST Authentication Details.
Note: SafeSquid already provides a set of Application Signatures, Which can easily Identify Facebook Features like Login, Facebook Games, Facebook Chat, Facebook Like Etc. and all
But in this, we will create our Own Signature to Identify Facebook Login Request.
To do this we will use Request-Types
STEP 1:
---------------
Create a Request-Type to Identify Facebook Login
-------------------------------------------------------------------------------
Specify the Below Parameters and create a Request-Type
Over here,
In Method I have selected “POST”
In Host Name Field I have Specified “facebook.com”
And in File: “/login/device-based/regular/login/”
And A Name to the Request-Type as Facebook Login
----- RequestTypes Edit ------
- RequestTypes-Edit.png (46.52 KiB) Viewed 2291 times
After saving the Policy will look as shown below:
---- Request Types Save -----
- RequestTypes-Save.png (21.77 KiB) Viewed 2291 times
This Above Request-Type Will Identify Facebook Login Activity.
[Working: The Request-Type will be applied to a POST REQUEST that is made to ‘facebook.com’ with File Path: “/login/device-based/regular/login/”]