Set up an HTTPS certificate authority

You’ll need to set up a certificate authority (CA) to manage networks and monitor traffic for your Chrome devices. It’s important to set up a CA to ensure that your users can access websites that have digital certificates that can be validated by a specific CA. This should be done early during your deployment to ensure that users can access websites without issues.

Step 1: Set up a CA in your Admin console

You can add up to 50 certificates in each organizational unit.

  1. Sign in to your Google Admin console.

    Sign in using your administrator account (does not end in @gmail.com).

  2. From the Admin console Home page, go to Devices. On the left, click Networks.

    Requires having the Shared device settings administrator privilege.

  3. Go to Certificates.
  4. To apply the setting to all devices, leave the top organizational unit selected. Otherwise, select a child organizational unit.
  5. Click Create certificate.
  6. Enter a name for the certificate
  7. Click Upload, select the PEM file, and click Open.
    Note: DER-encoded certificates are not supported.
  8. Select the platforms that the certificate is a CA for.
  9. Click Add.

Step 2: Verify the CA on managed Chrome devices

  1. Go to chrome://settings/certificates.
  2. Click Authorities.
  3. Scroll down to see the newly-added CAs.

 

Was this helpful?
How can we improve it?