How To's
Home » How To's

How to enroll Chrome Browsers in Chrome Enterprise using MDM?

MacOS

Enrolling Chrome Browser in Chrome Enterprise using ManageEngine MDM on macOS involves creating a custom configuration profile and pushing the token file to your managed devices. Here's a general guide on how to do it:

  • Obtain the Chrome Enterprise Token
  • Create a configuration profile
  • Add a custom configuration
  • Specify the token file
  • Deploy the configuration profile

Steps

  • Obtain the Chrome Enterprise Token:
    Authorized partners: To be able to generate the enrollment token, your customers first need to accept the Chrome Browser Cloud Management License Agreement.
    1. Sign in to your Google Admin console using an administrator account.
    2. In the Admin console, go to Menu > Devices > Chrome > Managed browsers. If you signed up for Chrome Browser Cloud Management, go to Menu > Chrome browser > Managed browsers.
    3. At the top, click enroll.
    4. Click copy enrollment token to clipboard.
    5. Click done.
  • Create a configuration profile:
    Login to ManageEngine MDM and navigate to Device Management > Profiles.
    Sample XML:
    •  
    <?xml version="1.0" encoding="UTF-8"?>
    <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
    <plist version="1.0">
    <dict>
    	<key>PayloadContent</key>
    	<array>
    		 <dict> 
            		<key>CloudManagementEnrollmentToken</key> 
            		<string>XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX</string> 
            		<key>CloudManagementEnrollmentMandatory</key> 
            		<true/> 
            		<key>PayloadEnabled</key> 
            		<true/>
            		<key>PayloadDisplayName</key> 
            		<string>Chrome Browser Settings</string> 
            		<key>PayloadIdentifier</key> 
            		<string>com.google.Chrome.5F15308F-877A-4F25-916B-948E771D8128</string> 
           		 	<key>PayloadUUID</key> 
            		<string>8EBD3676-7C77-4FEE-9E78-C00EA0A0B5C3</string> 
            		<key>PayloadType</key> 
            		<string>com.google.Chrome</string> 
            		<key>PayloadVersion</key> 
            		<integer>1</integer>         
        	</dict> 
    	</array>
    	<key>PayloadDisplayName</key>
    	<string>ChromeEnrollmentConfig</string>
    	<key>PayloadIdentifier</key>
    	<string>E85645C9-C397-43C7-92B0-0ED10A258025</string>
    	<key>PayloadRemovalDisallowed</key>
    	<false/>
    	<key>PayloadType</key>
    	<string>Configuration</string>
    	<key>PayloadUUID</key>
    	<string>044C99C9-0016-4963-A599-1974F7EC6B39</string>
    	<key>PayloadVersion</key>
    	<integer>1</integer>
    </dict>
    </plist>
  • Add a custom configuration:
    Within the configuration profile, find the option to add custom configurations and create a custom configuration.
  • Specify the token file:
    Add a custom configuration setting to specify the location of the Chrome Enterprise token file by providing the enrolment token file.
  • Deploy the configuration profile:
    Save the configuration profile and deploy it to the managed MacOS devices.

iOS

Enrolling Chrome Browser in Chrome Enterprise using ManageEngine MDM on iOS involves modifying the app configurations and pushing the token file to your managed devices. Here's a general guide on how to do it:

  • Obtain the Chrome Enterprise Token
  • Find the app in app repository
  • Add the app configuration
  • Specify the token file
  • Deploy the configuration profile

Steps

  • Obtain the Chrome Enterprise Token:
    Authorized partners: To be able to generate the enrollment token, your customers first need to accept the Chrome Browser Cloud Management License Agreement.
    1. Sign in to your Google Admin console using an administrator account.
    2. In the Admin console, go to Menu > Devices > Chrome > Managed browsers. If you signed up for Chrome Browser Cloud Management, go to Menu > Chrome browser > Managed browsers.
    3. At the top, click enroll.
    4. Click copy enrollment token to clipboard.
    5. Click done.
  • Find the app in the App Repository:
    Search for the app in the App Repository.
  • Add the app configuration:
    Modify the App Configurations.
    Sample XML:
    •  <?xml version="1.0" encoding="UTF-8"?>
    <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
    <plist version="1.0">
    <dict>
        <key>CloudManagementEnrollmentToken</key>
        <string>XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX</string>
    </dict>
    </plist>
  • Specify the token file:
    Add a custom configuration setting to specify the location of the Chrome Enterprise token file by providing the enrolment token file.
  • Deploy the configuration profile:
    Save the configuration profile and deploy it to the managed iOS devices.

Android

Enrolling Chrome Browser in Chrome Enterprise using ManageEngine MDM on Android involves modifying the app configurations and pushing the token file to your managed devices. Here's a general guide on how to do it:

  • Generate the enrollment token
  • Add the app to App Repository
  • Assign the enrollment token to the app

Steps

  • Generate the enrollment token:
    1. Sign in to your Google Admin console using an administrator account (does not end in gmail.com).
    2. In the Admin console, go to Menu > Devices > Chrome > Managed browsers. If you signed up for Chrome Browser Cloud Management, go to Menu > Chrome browser > Managed browsers.
    3. At the top, click enroll.
    4. Click copy enrollment token to clipboard.
    5. Click done.
  • Add the app to App Repository:
    To add the app to App repository, follow these steps.
  • Assign the enrollment token to the app:
    1. Go to app configurations.
    2. Paste the enrollment token in its respective field generated in Step 1.
    3. Click Save.