Deploy the ConcealBrowse extension to Google Chrome. Microsoft Edge, and Brave on Windows 10+ endpoints seamlessly with Group Policy Objects (GPO) and PowerShell.
- Active Directory and Group Policy Objects (GPO)
- You need an administrator account capable of administering your active directory domain(s) and Group Policy.
- Microsoft PowerShell
Any edition of Windows 10 and 11 but not Windows Home
Google Chrome 101+
- Microsoft Edge version 77 and newer
- Windows must be joined to Active Directory or Azure Active Directory
- Brave browser
- You may download the Install-ConcealBrowse.ps1 PowerShell script from this article: Current ConcealBrowse PowerShell Script
- The script contains detailed documentation and examples for your review.
- Open your ConcealBrowse dashboard (https://dashboard.conceal.io) and navigate to the tab labelled Devices on the left side menu.
- On the Devices page, click Register New Device in the upper right hand corner.
- Once you click on Register a New Device, you will see two variables generated for the Company ID and Site ID. These will be used as arguments when executing the PowerShell script.
Microsoft Group Policy Steps
Step 1: Create the Group Policy Object
- Open the Group Policy Management Console
- Expand the navigation tree until you see your domain
- Expand your domain
- Right click Group Policy Objects and click New
- Name the new policy, example “Computer - ConcealBrowse Deploy Script” and click OK
- Right Click the new policy and choose Edit
- Within the policy, navigate to Computer Configuration > Policies > Windows Settings > Scripts (Startup/Shutdown)
- Open the Startup policy
- Click the PowerShell Scripts tab
- Click Add... then click Browse...
- This will open the directory associated with the policy, we will place the script here
- Copy and paste the Install-ConcealBrowse.ps1 script into this folder and click Open
- If this has been done correctly, the Script Name will only show Install-ConcealBrowse.ps1 instead of a path
- For Script Parameters:
- You may open the script and review the documentation at the top to see options you can use to customize your deployment. At a minimum you must specify the following.
- Use the following format and enter your CompanyID and SiteID:
-CompanyId <CompanyID from dashboard.conceal.io> -SiteID <SiteID from dashboard.conceal.io>
-CompanyId 12345678-9012-3456-7890-123456789012 -SiteID abcdefgh-ijkl-mnop-qrst-uvwxyzabcdef
- Click OK
- Click OK then close the Group Policy Management Editor
Step 3: Apply
- Apply the policy to a limited group of test devices, this is usually done with an Organizational Unit (OU) containing a few test Users
- Right click the target OU and choose Link an Existing GPO
- Select the policy created above
Step 4: Test
- For one or more test devices, restart
- It may require two restarts to fully apply
- After restarting, launch a supported browser and check that ConcealBrowse has been installed and says ON
- Event Viewer > Windows Logs > System with Source "GroupPolicy(Microsoft-Windows-GroupPolicy)" will show any warnings or errors regarding group policy application
- Once testing is successful, apply the policy more generally across your organization.
Assuming your policy contains no User settings, it’s recommended to disable User settings to improve enterprise group policy performance:
- Right click the policy created above and choose properties
- Click the General tab
- Select Disable User Configuration Settings
Was this article helpful?
Articles in this section
- What are the different customization options in the Powershell script?
- Deploying ConcealBrowse through Datto ComStore
- ConcealBrowse MSI Installer - V 1.0
- Deploying ConcealBrowse through the MSI
- ConcealBrowse MSI Installer - V 0.1.8
- How to uninstall ConcealBrowse
- Deploy the ConcealBrowse extension to Chrome, Edge, and Brave on Windows 10+ using Action1 and PowerShell
- Deploy the ConcealBrowse extension to Chrome, Edge, and Brave on Windows 10+ using Intune and PowerShell
- Deploy the ConcealBrowse extension to Chrome, Edge, and Brave on Windows 10+ using Group Policy Objects and PowerShell
- Deploy the ConcealBrowse extension to Chrome, Edge, and Brave on Windows 10+ using Kaseya VSA and PowerShell