Skip to content
Request a Demo
All posts

BitLyft AIR® v1.24: Expands Google Workspace Security

v1.24
Picture of Hannah Bennett By  Hannah Bennett  ·  1 minute read

Managing access and responding to identity-based threats are two of the most time-consuming challenges for security teams. Manual onboarding slows teams down, while gaps in visibility across collaboration platforms like Google Workspace can leave organizations exposed.

With BitLyft AIR® v1.24, we’re addressing both.

This release introduces enterprise SSO connection management and automatic user provisioning, along with expanded Google Workspace detections and an automated phishing response playbook.

Simplified Access with Enterprise SSO

BitLyft AIR® now allows organizations to configure and manage SAML-based SSO connections directly within the platform.

Administrators can:

  • Connect identity providers like Okta, Google, Microsoft, or custom SAML (Security Assertion Markup Language)
  • Map SSO connections to specific email domains
  • Assign default roles for new users

In addition, automatic user provisioning ensures that when a user signs in through SSO, their account is created instantly with the correct permissions.

This removes the need for manual account setup and ensures access is governed by your identity provider from the start.

Expanded Google Workspace Visibility

v1.24 adds new alert rules across administrative activity, application access, drive activity, and authentication events in Google Workspace.

These detections surface:

  • Privilege changes and administrative actions
  • Risky API access and application authorization
  • Suspicious file sharing and download behavior
  • Login anomalies and forwarding rule changes

Rather than relying on scattered logs, AIR® highlights activity that may indicate account compromise, insider misuse, or data exfiltration.

Automated Phishing Response in Google Workspace

Phishing remains one of the most common entry points for attackers.

This release introduces a Google Workspace phishing containment playbook that automates key response steps, including:

  • Quarantining emails by subject line
  • Removing unauthorized forwarding rules
  • Resetting affected user credentials

This allows teams to quickly and consistently contain phishing incidents without manual intervention.

Built to Reduce Effort and Improve Response

Security teams gain:

  • Faster onboarding through enterprise SSO
  • Consistent access control aligned with identity providers
  • Broader visibility into Google Workspace activity
  • Automated response to phishing threats

BitLyft AIR® v1.24 continues to reduce manual effort while expanding security coverage across identity and collaboration platforms.

Learn More

To see how BitLyft AIR® automates identity and cloud security response, schedule a 15-minute personalized demo.

Schedule Your Demo