deviceTRUST
Integration of deviceTRUST with Citrix Workspace app for ChromeOS
Starting with version 2511, Citrix Workspace app for ChromeOS supports deviceTRUST integration, enhancing security through continuous device posture checks within sessions. This integration ensures only compliant ChromeOS devices can access Citrix Virtual Apps and Desktops.
About the feature
deviceTRUST provides continuous device posture monitoring and assessment capabilities for ChromeOS devices accessing Citrix environments. The integration uses Google Chrome Enterprise APIs to collect device information and enforce security policies based on device compliance status.
Note:
For more information about deviceTRUST, see deviceTRUST Platform.
Supported device properties
The following device properties (signals) are available for ChromeOS platform configuration in the deviceTRUST console:
ChromeOS properties
- Asset ID - Administrator-assigned asset identifier
- Directory Device ID - Unique identifier for the device
- Location - Administrator-annotated device location
Hardware properties
- BIOS Serial Number - Device BIOS serial number
- CPU - CPU model name
- CPU Count - Number of CPU cores
Device name
- Name - Device host name
Operating system properties
- Name - Operating system name (ChromeOS)
- Platform - OS architecture
- Type - Client device type
- Version - ChromeOS version
User properties
- Name - Email address of the user logged into the Chrome device
- SID - Unique identifier for the user account
Enterprise API requirements
deviceTRUST uses Google Chrome Enterprise APIs that are only available to managed, force-installed Citrix Workspace app instances. The following properties require force installation:
ChromeOS properties (force install required)
- Asset ID
- Directory Device ID
- Location
Hardware properties (force install required)
- BIOS Serial Number
Device name (force install required)
- Name
Configuration in Google Admin Console
To configure device properties in the Google Admin Console:
- Sign in to the Google Admin Console.
- Navigate to Chrome > Devices.
- Select the device whose properties you want to set or view.
- Edit the Asset ID or Location property in the Custom fields section.
- View the Directory Device ID and BIOS Serial Number properties in the Basic Info section.
- Click Save to apply changes.
Benefits
This integration provides:
- Continuous security monitoring - Real-time device posture assessment during active sessions
- Policy enforcement - Automated responses based on device compliance status
- Enhanced visibility - Comprehensive device information for security administrators
- Seamless user experience - Transparent security checks without user intervention
Limitations
The following properties are not available for ChromeOS devices due to API limitations:
- Hardware Model property
- Hardware Vendor property