Skip to content

Stephen Hackers Blog

Infrastructure & Cyber Security Technical Architect

  • Home
  • Stephen Hackers

Tag Azure SignIn

  • Home
  • Azure Conditional Access Integration with Google Chrome
26/02/2021

Azure Conditional Access Integration with Google Chrome

By Steve inAzure Security, Cloud Security, Conditional Access, Externsions, Google, Group Policy, Microsoft, Microsoft Azure, Office Apps & Services Tag Azure AD Joined, Azure SignIn, Block, Chrome, Chrome Extension, Google, Join Type, Managed Device, Non Compliant Device, Windows 10 Accounts

Scenario: Anyone using MCAS, Conditional Access, Window 10 Endpoints and Google Chrome.

Challenge: How do you get Google Chrome to be recognised by Azure Conditional Access policies.

Issue : Azure Sign In’s, by default will not see Google Chrome as Azure AD Joined.

 

Browser = Chrome & Joined Type = [Blank]

However, by default Microsoft Edge does report as Azure AD Joined

Browser = Edge & Joined Type = Azure AD Joined

Solution : chrome://extensions/

Conditions in Conditional Access policy – Azure Active Directory | Microsoft Docs

“For Chrome support in Windows 10 Creators Update (version 1703) or later, install the Windows 10 Accounts extension. This extension is required when a Conditional Access policy requires device-specific details.

To automatically deploy this extension to Chrome browsers, create the following registry key:”

Path HKEY_LOCAL_MACHINE\Software\Policies\Google\Chrome\ExtensionInstallForcelist

Name 1

Type REG_SZ (String)

Data ppnbnpeolgkicgegkbkbjmhlideopiji;https://clients2.google.com/service/update2/crx

Or Add manually

Extension now appears for Windows 10 Accounts show below

Then the next Azure/265 Sign in with show Azure AD Joined using Google Chrome

Recent Posts

  • Setup a Microsoft 365 Developer subscription with E5 License – 90 days Rolling
  • Join the Developer 365 Program – Includes E5 License – 90 days Rolling
  • Azure Conditional Access Integration with Google Chrome
  • Block Downloads In MS TEAMS Thick Client For Non Managed Computers
  • Block Access From Unmanaged Devices To SharePoint or Specific Sites
  • How to Enable “Security Defaults” in Azure and Office 365
  • PowerCLI with a GUI – Clone a machine, add DHCP…
  • New Course & Exam Announcements in October
  • Exam PASSED – Managing Microsoft Teams MS700
  • VMware Horizon and Zero Clients Enabling Rapid…
  • VMware Horizon and Zero Clients Enabling Rapid Remote Secure IT Working
  • vSphere 7 with Kubernetes – Getting Started Guide
  • Security Is a Hugely Strategic Area For VMware:…
  • VMworld 2020 registration is now open!
  • Microsoft Azure Security – Study Notes

Categories

VMware vExpert Security 2020

Microsoft Certified Azure Security Engineer Associate

VMware vExpert (5 years)

Certified Ethical Hacker

Microsoft Certified Azure Administrator Associate

VMware vExpert 2020

MCP 365 Mobility and Security

Symantec Certified Specialist

MCP 365 Identity and Services