Manage the Chrome Enterprise Data Loss Prevention connectors

As an admin, you can use the Google Admin console to get Chrome to connect directly with your partners Data Loss Prevention (DLP) agents. This integration allows you to check for sensitive data, provides additional stability for the browser as well as the DLP partners agent, and removes the need to deploy and manage the DLP partner’s Chrome extension.

Before you begin: Devices must be enrolled in Chrome Enterprise Core. For details, see Set up Chrome Enterprise Core.

Add configurations for service providers

  1. Sign in to your Google Admin console.

    Sign in using your administrator account (does not end in @gmail.com).

  2. In the Admin console, go to Menu and then Devicesand thenChromeand thenSettings. The User & browser settings page opens by default.

    If you signed up for Chrome Enterprise Core, go to Menu and then Chrome browserand thenSettings.

  3. (Optional) To apply the setting only to some users and enrolled browsers, at the side, select an organizational unit (often used for departments) or configuration group (advanced). Show me how

    Group settings override organizational units. Learn more

  4. Go to Chrome Enterprise Connectors.
  5. (Optional) If you’re configuring Chrome Enterprise connectors settings for the first time, follow the prompts to turn on Chrome Enterprise Connectors.
  6. Click one or all of the following policies to select your Local Content Analysis DLP vendor:
    • Upload content analysis—Select your Local Content Analysis DLP vendor to be used by Chrome to send the full contents and metadata of files attached to web content for analysis. Under Additional settings, for When the analysis verdict is not received in time, choose to allow or block file access.
    • Bulk text content analysis—Select your Local Content Analysis DLP vendor to be used by Chrome to send the full contents and metadata of clipboard contents pasted on the web for analysis. Under Additional settings, for When the analysis verdict is not received in time, choose to allow or block text entry.
    • Print content analysis—Select your Local Content Analysis DLP vendor to be used by Chrome to send the full contents and metadata of printed pages for analysis. Under Additional settings, for When the analysis verdict is not received in time, choose to allow or block printing.
      For more details, see Set Chrome policies for users or browsers.
  7. Click Enable Chrome Enterprise Connectors.

Verify the configuration

You can check users’ devices to make sure that policies are applied correctly.

  1. On the machine that you set the policies, open Chrome browser and go to chrome://policy.
  2. In the policy list, when you expand out the setting, the service provider is listed as local_system_agent.
  3. The following policies correspond to the specific connectors that are selected in step 6 above
    • OnFileAttachedEnterpriseConnector
    • OnFileDownloadedEnterpriseConnector
    • OnFileTransferEnterpriseConnector
    • OnBulkDataEntryEnterpriseConnector
    • OnPrintEnterpriseConnector

Provider configuration details

Broadcom Symantec

Refer to the guide below for details on setting up the integration between the Chrome Local Content Connector and Broadcom Symantec users.

DOWNLOAD GUIDE (PDF)

Trellix

Refer to the guide below for details on setting up the integration between the Chrome Local Content Connector and Trellix users.

DOWNLOAD GUIDE (PDF)

Related topics

Google and related marks and logos are trademarks of Google LLC. All other company and product names are trademarks of the companies with which they are associated.

Was this helpful?

How can we improve it?
Search
Clear search
Close search
Google apps
Main menu
2258303441479710880
true
Search Help Center
true
true
true