Chrome Zero Touch Enrollment

What is Chrome Zero Touch Enrollment?

Really ready out of the box

Once an end user receives the device, all they need to do is connect to the internet, log in, and they're ready to go.

Eliminate the time needed for manual configuration

Zero-touch enrollment ensures that Chrome OS devices are registered to automatically enroll once in the hand of end users. This eliminates the need for manual device enrollment by IT departments or end users.

Built with security in mind

Hardware-backed attestation secures the identity of the devices to prevent spoofing attacks.

How zero-touch enrollment works

  • 1. Purchase the Chrome OS device

    To start, the customer purchase a Chrome OS device that supports zero-touch enrollment and requests for it to be pre-provisioned for zero-touch enrollment through their approved service partner.

  • 2. Generate a pre-provisioning token

    The IT Admin then generates a pre-provisioning token in the Google Admin console, and shares the token with their service partner.

  • 3. Partner registers the device with Google

    Describe the item or answer the question so that site visitors who are interested get more information. You can emphasize this text with bullets, italics or bold, and add links.

  • 4. Device is shipped to the user

    Once the device is in a pre-provisioned state, the service partner send the device directly to the end user.

  • 5. User powers on the device

    The user powers on the device and connects to WiFi. The device check in with Google to determine if it needs to undergo zero-touch enrollment.

  • 6. Google confirms device identity

    Zero-touch enrollment is built with security in mind, leveraging the Titan C security chip to help Google confirm the device's identity. The helps prevent spoofing attacks during the enrollment process.

  • 7. The user can now log in

    Once the device's identity is confirmed, the device automatically enrolls into the customer's domain, policies are applied, and now the user can log in.

Share by: