Enroll browsers with Omnissa Workspace ONE (Windows and macOS)

Applies to Windows and macOS users who use managed Chrome browser.

You can use Omnissa Workspace ONE to generate a Chrome Enterprise Core enrollment token and enroll your Chrome browsers. You can then use your Google Admin console to enforce policies for any users who open Chrome browser on enrolled Microsoft Windows 10 or Apple Mac devices.

Before you begin

Make sure you have access to the Omnissa Workspace One console.

Enroll Windows browsers with the enrollment token

  1. Sign into the Omnissa Workspace One console.
  2. On the left, click Resourcesand thenProfiles.
  3. Click Addand thenAdd Profile.
  4. Select Windows ADMX.
  5. Select Device Profile.
  6. Name your profile.
  7. In the search box, search for Chrome. Then, to the right of Google Chrome result, click Add.
  8. Search in the list for The enrollment token of cloud policy. Then, to the right of it, click Enabled.
  9. Sign in to your Google Admin console and generate an enrollment token. See Generate enrollment token.
  10. Paste enrollment token in the policy value box.
  11. (Optional) If you want the browser to only work if a successful enrollment occurs, turn on Enable mandatory cloud management enrollment—Set CloudManagementEnrollmentMandatory to 1.
  12. Click Next.
  13. Follow the next steps to configure your preferred assignment settings.
  14. Click Save and Publish to deploy the profile on your machines.

Enroll Mac browsers with the enrollment token

  1. Sign into the Omnissa Workspace One console.
  2. On the left, click Devicesand thenProfiles and Resourcesand thenProfiles.
  3. Click Addand thenAdd Profile.
  4. On the Device Type Selection page, select Apple macOS.
  5. On the Context Type Selection page, select Device Profile.
  6. Name your profile and configure any other assignment, smart groups and removal settings.
  7. On the left, click Custom Settingsand thenConfigure.
  8. Under Custom Settings, paste the following XML:

    <dict>

        <key>CloudManagementEnrollmentToken</key>

        <string>XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX</string>

        <key>CloudManagementEnrollmentMandatory</key>

        <true/>

        <key>PayloadEnabled</key>

        <true/>

        <key>PayloadDisplayName</key>

        <string>Chrome Browser Settings</string>

        <key>PayloadIdentifier</key>

        <string>com.google.Chrome.4F720473-6832-4CE0-A895-E9C3FC6F8CBD</string>

        <key>PayloadUUID</key>

        <string>4F720473-6832-4CE0-A895-E9C3FC6F8CBD</string>

        <key>PayloadType</key>

        <string>com.google.Chrome</string>

        <key>PayloadVersion</key>

        <integer>1</integer>

    </dict>

    Note: CloudManagementEnrollmentMandatory prevents the browser from starting if an enrollment fails. If you do not want to enable this enhanced security mode, set data value for line 5 to False instead of True.

  9. Sign into your Admin console and generate an enrollment token. See Generate enrollment token.
  10. Replace the XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX value in the Custom Settings xml with the token value that you want to deploy.
  11. Click Save and Publish to deploy the profile on your machines.

Google and related marks and logos are trademarks of Google LLC. All other company and product names are trademarks of the companies with which they are associated.

Was this helpful?

How can we improve it?

Need more help?

Try these next steps:

Post to the help community Get answers from community members
true
Search
Clear search
Close search
Google apps
Main menu
6497995919705273383
true
Search Help Center
false
true
true
true
true
true
410864
false
false
false
false
false