Applying Chrome Browser sign-in policies using JumpCloud

JumpCloud allows you to easily manage Chrome browser settings using the Browser Patch Management feature. Read more in JumpCloud's documentation.

The specific use-case here is applying a policy to all devices to force users to login to Chrome. This will mean that the Trelica Browser Extension can be applied and users automatically identified. 

The first step is to log in to Google Workspace and create an enrollment token for Chrome.

  1. Go to Chrome browserManaged browsers andn click the Enroll button.
  2. Click top copy the token to the clipboard.
If you do not see a Chrome browser option in Google Admin then you will need to enable Chrome Browser management first.

Now log in to JumpCloud and go to Policy ManagementPatch Management > Browser

Choose one of the available Chrome policies - we recommend Chrome General Adoption Ring:

Click through and on the Details tab you can choose how to enforce browser sign-in, and set Chrome Browser Cloud Management Settings:

Tick Enroll in Chrome Browser Cloud Management and paste in the enrollment token you created in Google Workspace.

We recommend enabling Chrome Browser Cloud Management Reporting.

You can then apply the policy to individual devices or device groups.

Considerations before enabling 'Force users to sign-in to use the browser'

If you enable Force users to sign-in to use the browser then the next time an employee opens Chrome they will see a screen like this:

This means the user will lose any bookmarks, Chrome passwords, history and other settings.

To avoid this, you should notify your users that they must sign-in to Chrome in their browsers using their work credentials. This screen shot shows them how to sign-in and turn on settings synchronization:

If a user is already signed-in, then once you apply Force users to sign-in to use the browser then users will be given the option to merge their current settings into their online profile if they tick the Add existing browssing data to managed profile"

Forcing sign-in to your domain

When you apply Sign-in Settings you can enter a regular expression in the Restrict sign-in to regular expression pattern field. You can use this to restrict the domains a user can enter when signing in.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.