<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z0000AJCxIjCQLOkta Identity EngineIdentity Security Posture ManagementAnswered2026-03-31T14:32:35.000Z2025-01-17T16:10:05.000Z2025-01-23T02:02:51.000Z

AlexS.13183 (Customer) asked a question.

January 17, 2025 at 4:10 PM
Device assurance policy for managed Chrome browsers

We have enrolled our Google Chrome browsers running on Windows workstations (for policy we choose Windows as a platform) into our Google Workspace. Trying to set up device assurance policy for managed Chrome browsers based on the following article:

https://help.okta.com/oie/en-us/content/topics/identity-engine/devices/chrome/device-assurance-chrome.htm

Unfortunately, the article does not go into details on the values definitions for the policy. For example with policy definition there is a criteria "Key trust level for Chrome" (presumably for Chrome browsers?) but the referenced article does not describe the purpose of this variable.

We did open the ticket with support, but have not got any answers yet.

Is there a any other articles which would help with creating the policy?

 

  • 3 answers
  • 227 views

  • Mihai Negoita - Okta (Okta, Inc.)

    Hi @AlexS.13183 (Customer)​ , Thank you for reaching out to the Okta Community! 

     

    I haven't been able to locate any additional information on the Okta side. This does seem to be related to the Google side of the implementation.  

    Pasted 

    I was able to locate the following on their side: https://support.google.com/chrome/a/answer/13570263?hl=en#zippy=%2Cdefinition-of-values-on-chromeconnectors-internals:~:text=Trust%20Level%3A,like%20on%20Linux.

    Mac 

    If you already have a ticket open with Support, I recommend continuing to work with them to clarify the issue. They'll be able to access additional tools and resources to help you get to the bottom of it.  

     

     

    If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you. 

     

    Hope my answer helps! 

     

    --

    Help others in the community by liking or hitting Select as Best if this response helped you.

    Expand Post

    • AlexS.13183 (Customer)

      I see the option for "Key stored in file system" but how does okta know where to look this value at?

  • AlexS.13183 (Customer)

    Hi @Mihai Negoita - Okta (Okta, Inc.)​ Unfortunately Google's article does not shed any light on the subject. I was hopping better documentation from Okta on the integration. Looks like Okta support struggles with this as well. I'm going to try Okta prof services. Thanks,

This question is closed.
Loading
Device assurance policy for managed Chrome browsers