on
07-17-2019
08:30 PM
- edited
Tuesday
by
Nils
To be able to scan your Chrome OS (e.g. Chromebook) devices with Lansweeper, you need to ensure that they meet the scanning requirements. This article describes these requirements, and how to set up the required project and credential.
To perform Chrome OS scans, the following requirements must be met:
First, you'll need to create a project for the domain your Chrome OS devices are located in.
Browse to https://console.developers.google.com/ and sign in as a super administrator. Open the navigation menu, select the IAM & Admin sub-menu and select Manage Resources.
From here, you can select Create project. Give your project a name, select the correct organization and location and select Create.
Next, enable the Admin SDK for the project you just created.
In the developer console, make sure you have your newly created project selected at the top. Open the navigation menu, select the APIs & Services sub-menu and select Library.
Search for "Admin SDK", select the API in the search results and select Enable.
Next, create a service account with access to the Admin SDK API of your project.
In the developer console, make sure you have your project selected at the top. Open the navigation menu, select the APIs & Services sub-menu and select Credentials. Press Create credentials and then choose Service account from the available options.
Enter a name and description for your account, select Create and continue followed by Done.
On the resulting page, the Credentials sub-menu of the APIs & Services menu, select your newly created service account.
Copy the unique ID you see listed on the page, as you'll need it in step 5 of this article.
In the Keys tab of the service account, go to the Add key drop-down menu and select the Create new key option within.
In the resulting popup, select the JSON format. The key will be saved to your computer. Make sure to keep it somewhere safe. If you lose your key, you'll need to generate a new one.
The JSON key will be used as part of your Chrome OS scanning target in Lansweeper.
Next, grant your service account access to the necessary scopes. Browse to https://admin.google.com/ and sign in as a super administrator. Open the Security menu, Access and data control and finally API controls.
Select Manage domain wide delegation and press Add new.
In the resulting popup, submit the service account ID you copied earlier. In the OAuth scopes input box, paste the following to grant the service account access to the necessary scopes, and select Authorize: https://www.googleapis.com/auth/admin.directory.orgunit.readonly, https://www.googleapis.com/auth/admin.directory.device.chromeos.readonly
Lastly, make sure you have a user with the Services Admin role. In the Users menu of the admin console, you can add or select a user. Go to Admin roles and privileges and select the Services Admin role.
You're now ready to start scanning your Chrome OS devices in Lansweeper, by following this Chrome OS scanning guide. As part of your Lansweeper scanning target, you'll need to submit the user account you configured or created, the one with the Services Admin role. You'll also need to provide the JSON key you generated.