If you or your company uses a local networking configuration that denies access to particular URLs, such as a firewall or proxy server, you might encounter errors when accessing or using the Cloud de Confiance console. This document lists the domains and domain patterns that must be allowed for the Cloud de Confiance console to function properly.
Required domains
The following domains and domain patterns are required for Cloud de Confiance console functionality. If any of these domains are blocked, the console will not function as expected.
Make sure your networking configuration allows access to the following domains:
| Domain or domain pattern | Purpose |
|---|---|
| console.cloud.google.com | The Cloud de Confiance console |
| www.gstatic.com | Static content such as scripts, style sheets, and images |
| ssl.gstatic.com | Images |
| fonts.gstatic.com | Fonts |
| *.clients6.google.com | Google APIs |
| *.googleapis.com | Google APIs |
| apis.google.com | Google API Client Libraries |
| reauth.cloud.google.com | Multi-factor authentication (MFA) conformance |
| csp.withgoogle.com | Content Security Policy (CSP) violation reporting |
Monitoring domains
The following domains and URLs are used for health monitoring of the Cloud de Confiance console. If any of these are blocked, the console might continue to function but Google will not be aware of any errors or behavior issues you encounter while using the console.
| Domain or URL |
|---|
| cloud.google.com/log |
| www.google-analytics.com |
| www.googletagmanager.com |