Hello,
We are using Context-Aware Access (allowed office IP's only) to restrict users from login to our corporate email addresses on google outside the office network. Still, they can log in with a warning “You don’t have access, A company policy is blocking access to this email” on that page at the top right corner. It shows there is a menu (9 dots). When you click on that menu, you can see the “Account” option. You can access all account information and make changes to the recovery email and phone, etc. Access to email and other options are blocked except the Account option.
Also, you can access the google password manager in that section and can view all passwords.
In an ideal situation, restricting the accounts access on outside allowed IP's should NOT show that page and restrict users from making changes or viewing saved/sync passwords.
I tried multiple support engineers over chat, but all cannot restrict that page or guide me to restrict the Account option outside the allowed network.
Please make that change to the Context-Aware Access system or restrict the Account option like email and other options.
Regards