For Enhanced Windows Support for Securly Classroom to work effectively, it is necessary that all the primary setup steps be completed. In addition to those steps, there are some best practices that you should consider enacting in your district or school that can help you avoid problems and prevent students from circumventing the system.
Force Google Workspace login in Chrome
Create a GPO and navigate to User Configuration > Policies > Administrative Templates > Google > Google Chrome and edit “Browser sign in settings".
Next edit “Restrict with Google accounts…”
Enter the school email domain.
Example:
.*@school.k12.state
Click OK.
Set Chrome as Windows default browser
Create an XML file with the following text.
<?xml version="1.0" encoding="UTF-8"?>
<DefaultAssociations>
<Association Identifier=".htm" ProgId="ChromeHTML" ApplicationName="Google Chrome" />
<Association Identifier=".html" ProgId="ChromeHTML" ApplicationName="Google Chrome" />
<Association Identifier="http" ProgId="ChromeHTML" ApplicationName="Google Chrome" />
<Association Identifier="https" ProgId="ChromeHTML" ApplicationName="Google Chrome" />
</DefaultAssociations>
Place the XML file in the same shared folder as the Securly Agent MSI.
Create a GPO and navigate to Computer Configuration > Policies > Administrative Templates > Windows Components > File Explorer and edit “Set default associates configuration file”
Enter the UNC path to the XML file.
Block access to other web browsers
Create a GPO and navigate to Computer Configuration > Policies > Windows Settings > Security Settings > Software Restriction Policies. Right-click Software Restriction Policies and choose “New Path Rule…”
Enter in the path to the browsers’ executable file. For Edge enter the path:
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
Create additional Path Rules for any other browsers you want to block access to.
Comments
Article is closed for comments.