Tuesday, February 18, 2025
HomeCloudOpenVPN - Google Cloud Allowing Remote users to Connect to Your Corporate...

OpenVPN – Google Cloud Allowing Remote users to Connect to Your Corporate Network & Apps over VPN

Published on

SIEM as a Service

Follow Us on Google News

Google Cloud identity platform launching OpenVPN access that integrated with secure LDAP which enable corporate network users to access their application and infrastruscture using their Cloud Identity credentials.

Cloud Identity is an Identity as a Service (IDaaS) solution offered by Google that allows you to centrally manage users and groups who can access cloud resources.

This OpenVPN service provides secure & flexible VPN solutions to secure your data communications LDAP access to authentication, authorization, and user/group lookups for LDAP based apps and IT infrastructure.

In this case, Google integrated OpenVPN Access Server with their Cloud Identity let allow users remotely access their corporate network and apps over VPN using their G-suite OR Cloud Identity credentials.

OpenVPN

Above Image(top half) illustrate the deployment of OpenVPN access with the various cloud services and that are using the cloud identity for authentication and authorization.

Bottom half illustrate how remote employees use VPN to connect to their corporate network and Apps.

According to Google Cloud, ” The Access Servers are configured with a group called ‘IT Admin,’ which allows SSH access to all application servers on all the private networks. This allows any employee identity present in Cloud Identity that is a member of ‘IT Admin’ group to access any of the private networks via VPN and use SSH.”

“Users can configure groups in Access Server that correspond to those stored in Cloud Identity and enforce access controls for the user based on that user’s group membership”

OpenVPN

Google launched the dedicated website for OpenVPN where users can obtain the configuration instructions.

Also Read:

An Important Guide To Torrenting Safely using Best Virtual Private Network

Keep your Data Safe on Public WiFi | Install and Host your Own Virtual Private Network on a VPS

Hidden Malware and Privacy Risks with the Top Free Android VPN apps in the Google Play Store

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Highly Obfuscated .NET sectopRAT Mimic as Chrome Extension

SectopRAT, also known as Arechclient2, is a sophisticated Remote Access Trojan (RAT) developed using...

Threat Actors Trojanize Popular Games to Evade Security and Infect Systems

A sophisticated malware campaign was launched by cybercriminals, targeting users through trojanized versions of...

New Research Aims to Strengthen MITRE ATT&CK for Evolving Cyber Threats

A recent study by researchers from the National University of Singapore and NCS Cyber...

New LLM Vulnerability Exposes AI Models Like ChatGPT to Exploitation

A significant vulnerability has been identified in large language models (LLMs) such as ChatGPT,...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

Highly Obfuscated .NET sectopRAT Mimic as Chrome Extension

SectopRAT, also known as Arechclient2, is a sophisticated Remote Access Trojan (RAT) developed using...

Threat Actors Trojanize Popular Games to Evade Security and Infect Systems

A sophisticated malware campaign was launched by cybercriminals, targeting users through trojanized versions of...

New Research Aims to Strengthen MITRE ATT&CK for Evolving Cyber Threats

A recent study by researchers from the National University of Singapore and NCS Cyber...