Updated on December 4, 2023

Device Classification for Chrome

Device Classification for Chrome

You can classify Chrome devices based on these criteria:

  • Device not compromised
  • Primary storage encrypted

Go to Settings > Manage > Device Classification and select Chrome on the New Device Classification dropdown list, and then follow these steps to classify your Chrome device. Select options and enter the requested parameters.

  1. Rule Name: Enter a name for this classification rule.
  2. Device Classification: This option is only visible on the webUI only if you have enabled Custom Device Classification for your tenant. This is currently a beta feature. From the options displayed in the dropdown menu, choose the desired label you want to assign to this rule. You cannot assign more than one label to a rule.
  3. Classification Criteria: Select an Any or All criteria match.
  4. Device Not Compromised: No parameters required.
  5. Primary Storage Encrypted: No parameters required.
  6. When finished, click Save.

After creating a device classification rule, you can use it in a Real-time Protection policy.

  1. To use this Device Classification in a Real-time Protection policy, click Policies > Real-time Protection in the Netskope UI. Select an existing policy or click New Policy and choose a policy type.

  2. Proceed through the Users, Cloud Apps + Web, DLP/Threat Protection, and Select Activities sections.

  3. For Additional Attributes, click Access Method and select either Client, Mobile Profile, or Reverse Proxy, and then click Save. Click Device Classification, and then select label from Custom Device Management, Managed or Unmanaged from Device Classification based on the devices you just classified.

    • Managed means the device is managed; the device posture information sent by the Client matches at least one of the device classification checks configured for that Client’s OS.

    • Unmanaged means the device is unmanaged; the device posture information sent by the Client matches none of the device classification checks configured for that Client’s OS.

  4. When finished, click Save and then Next.

  5. Combine device classification with other policy elements, like using the Block Action for specified applications for activities like uploading files from managed or unmanaged devices. Finish creating or updating this policy to establish this device classification. Click Apply Changes for this policy.

  6. After the policy has been created, perform the process for which the policy was created. Next go to Skope IT > Application Events and click the magnifying icon for an event to open the Application Event Details panel. In the User section you’ll see a Device Classification field, which shows one of these device classifications.

Share this Doc

Device Classification for Chrome

Or copy link

In this topic ...