Topic 1 Question 11
Your customer is deploying ChromeOS devices in their environment and requires those ChromeOS devices to adhere to web filtering via TLS (or SSL) inspection. What recommendations should you make to your customer in setting up the requirements for ChromeOS devices?
Configure a hostname allowlist, set up a TLS (or SSL) certificate, then verify TLS (or SSL) inspection is working.
Reach out to Google Workspace Security and Compliance for tailored configurations for your customer.
Configure a transparent proxy set up your allowlist to use *.google.com, then verify TLS (or SSL) inspection is working.
ChromeOS devices are preconfigured to adhere to company TLS (or SSL) inspection by default and can therefore be deployed with no additional configuration.
ユーザの投票
コメント(1)
- 正解だと思う選択肢: A
When deploying ChromeOS devices in an environment that requires web filtering with TLS (or SSL) inspection, you must ensure that these devices trust the inspection process while maintaining proper security controls. The best practice involves:
Configuring a hostname allowlist – This ensures that critical ChromeOS services (such as system updates and device policies) are not blocked or broken by SSL inspection. Setting up a TLS/SSL certificate – You must deploy a trusted root CA certificate to all managed ChromeOS devices via the Google Admin console. This allows devices to trust the SSL/TLS inspection process. Verifying TLS/SSL inspection – Test web filtering and SSL interception to confirm that the policies work without breaking key ChromeOS functionalities.
👍 1serialx862025/02/13
シャッフルモード