Configuration options for the Chromebook agent type
The Agent Configuration screen allows you to create or modify agent profiles for Chromebook agents. Selecting a Chromebook agent profile from the list will allow you to configure the profile.
To see the different Agent Configuration profiles attached to your account, visit your USS Dashboard and click Products ⟶ Web Security ⟶ Agent Configuration.
Profile name / Tray icon tooltip
A friendly name for the profile to make it easier to manage. The name is also displayed in the About dialog.
The tamper-proof password which secures the configuration and start/stop options on the agent. This password is automatically generated when the profile is created but can be changed.
Tag web requests with
The Tag to assign to this agent. Tags are used to identify the agent in Filter Rules. Select a tag to use, or choose
No Selection if a tag is not required.
Preferred outbound ports
The agent will connect to the Web Security cloud service on ports
443. Select the preferred ports here and they will be tried first. If a connection is not established, the agent will try the remaining ports.
Hot Spot mode (Fail Open)
If enabled, the agent will provide unfiltered access if for any reason the Web Security cloud service ports are inaccessible. If not enabled, web access will be blocked until the cloud service becomes available again.
The Bypass Categories section contains a list of available categories, created in the Bypass section of the Web Security product. Bypass categories provide a way for the agents to trust particular network resources, so that matching traffic does not get filtered by the Web Security cloud service. A number of pre-defined categories are provided as a starting point for common services.
(System)appended to their name.
Use strict SSL/TLS ciphers
If enabled, the agent will reject connections to Web servers that are configured to use old, deprecated or insecure ciphers (such as rc4 and rc4-md5). This may cause third-party services to stop working. Generally, a web browser will always try and negotiate at the highest possible cipher level supported by the web server.
An internal ID of the agent profile which may be requested by the Service Provider during a troubleshooting session. This ID cannot be changed.
In order to perform SSL/TLS Inspection the agent requires a certificate to be deployed to the Chromebook, usually via the Google Admin console. To obtain the SSL public key to upload to Google Admin, use the copy or Download options in this section.