Always On Security for Chromebooks
Chromebooks now support Always On VPN through extended support for the GlobalProtect app for Android.
Software Support: Starting with GlobalProtect™ App 5.0
OS Support: Google Chrome OS 45 and later releases
Chromebooks now support Always On VPN through extended support for the GlobalProtect app for Android. With this feature, you can enable your end users to run the GlobalProtect app for Android on their Chromebooks to ensure that they are always connected to GlobalProtect and have access to always on security regardless of where they are located. End users can install the app manually from the Google Play Store or you can push the app to managed Chromebooks using a mobile device management (MDM) system.
Chromebooks that do not support Android applications must continue to use the GlobalProtect app for Chrome. However, these Chromebooks will not support Always On VPN.
If the GlobalProtect app for Android is installed on a Chromebook for Always On VPN capability, the GlobalProtect app for Chrome should not be installed on the same Chromebook.
When you configure GlobalProtect with an Always On VPN configuration, the GlobalProtect app automatically connects each time a user unlocks his or her endpoint. This enables you to monitor all user traffic continuously (including SaaS and internet traffic) and achieve consistent policy enforcement to prevent security threats. For example, an increasing number of schools are now supplying students with Chromebooks for online exams, homework assignments, and classroom communication. However, they must ensure that their students do not access harmful or inappropriate content from these Chromebooks. Though schools can enforce security policies and monitor user traffic while students are on campus (using URL filtering and threat prevention policies), they must also be able to provide the same level of security when their students are off campus. With this feature, they can deploy the GlobalProtect app for Android on these Chromebooks to ensure that their students are always connected to GlobalProtect for secure network access.
The following GlobalProtect features are supported when you use the GlobalProtect app for Android on Chromebooks. A - indicates that the feature is not supported.
App login enhancements
Multi-factor authentication policy
Expired Active Directory password change for remote users
Active Directory password change using the GlobalProtect Credential Provider
Single Sign-On (SSO)
SSO (Credential Provider)
— (no client required)
User-logon (always on)
Pre-logon (then on-demand)
External gateway priority by source region
Internal gateway selection by source IP address
Split tunnel based on access route
Split tunnel based on destination domain, client process, and video streaming application
GlobalProtect Credential Provider pre-logon connection status
Multiple portal support
Pre-logon tunnel rename timeout
Restrict transparent app upgrades to internal network connections
Enforce GlobalProtect for network access
Deployment of SSL Forward Proxy CA certificates in the trust store
Run scripts before and after sessions
Allow users to disable GlobalProtect
Welcome and help pages
Automatic VPN Reconnect for Chromebooks
Refer to the following sections for more information on installing and managing the GlobalProtect app for Android on Chromebooks:
- Download and Install the GlobalProtect App for Android on Chromebooks
- Deploy the GlobalProtect App for Android on Managed Chromebooks Using AirWatch
- Deploy the GlobalProtect App for Android on Managed Chromebooks Using the Google Admin Console
- Configure an Always On VPN Configuration for Chromebooks Using the Google Admin Console
New Features Released in GlobalProtect App 5.0
New Features Released in GlobalProtect App 5.0 GlobalProtect app 5.0 introduces the following new features: Support for iOS 12 GlobalProtect app 5.0 supports iOS 12. ...
Features Introduced in GlobalProtect App 5.0
Learn about the exciting new features introduced in the GlobalProtect™ App 5.0 release. ...
Download and Install the GlobalProtect App for Android on Chromebooks
Download and Install the GlobalProtect App for Android on Chromebooks To use the GlobalProtect app for Android on a Chromebook, you must download and install ...
GlobalProtect App for Android
GlobalProtect App for Android GlobalProtect™ is a program that runs on your endpoint (desktop computer, laptop, tablet, or smart phone) to protect you by using ...
Uninstall the GlobalProtect App for Android from Chromebooks
Uninstall the GlobalProtect app for Android from a Chromebook. ...
GlobalProtect App for Android User Experience Enhancements
GlobalProtect app 5.0 for Android introduces a more streamlined app interface and intuitive user experience. ...
GlobalProtect App for iOS User Experience Enhancements
GlobalProtect app 5.0 for iOS introduces an enhanced app interface and user experience, MDM configuration changes, and authentication changes. ...
User Experience Enhancements for Android
GlobalProtect app 5.0 for Android introduces user experience enhancements. ...