byod – Prevent access to Gmail outside the scope of entreprise protected accounts

Today, we’re using the following setup :

 OS    uses   technology  
Windows  ->      GCPW
Mac      ->      LDAP
Android  ->   Workspace

Let’s take Windows as an example. A user can login into Windows using GCPW by entering his google account info. I want to prevent any login into his gmail account using a browser or any other application that isn’t using GCPW.

This is a BYOD environment.

Any ideas on how can I achieve this?

I found out that we could add custom settings to our GCPW, is it possible to use these settings to prevent access to gmail from outside of the scope of GCPW ?