Deploying the extension manually

This page includes:

About deploying the extension manually

Manual vs Managed deployments

The extension can be deployed either manually, or by using a UEM solution - for managed deployment:

  • Manual deployment: Manual deployment is recommended for PoC deployments only. The deployment is performed primarily by the end-user - whose browser will be protected by the extension. Details about manual deployment are included on this page.

    For information about how to deploy the extension using scripts - without a UEM, see Deploying the extension using scripts.

  • Managed deployment: The deployment is performed via a UEM solution, such as Intune, Google Workspace, JumpCloud, or Jamf.

    For details on the managed deployment procedures, see Deploying the extension [Managed deployment].

Additional information

  • After initial installation, the extension is periodically automatically updated - as required.

  • For details on installation requirements for the extension, see Installation requirements.

  • An organization token is not required.

  • Unattended activation is not available.

  • User authentication is usually performed via an email verification code, but SAML authentication can also be configured.

Important:

  • After installing the extension, any browsers that were open during the installation should be restarted. This will enable all open tabs in the browser to be protected by Advanced Browser Security.

  • If the extension is disabled and then re-enabled, any browsers that were open when the extension was re-enabled should be restarted. This will enable all open tabs in the browser to be protected by Advanced Browser Security.

More about manual deployment

The manual deployment methods are typically useful in smaller organizations and PoC evaluations.

  • The manual deployment methods require co-operation and input from end-users. The end-users must deploy the extension on all browser profiles that they want to protect [see Deploying the extension manually below]. The end-users must also manually sign-in to the extension in each of these profiles - to activate the extension.

  • The manual deployment methods may be used for contractors that are required to use the extension. In such scenarios, you can configure conditional access so that users will need to have the extension installed in order to be able to access specified websites. For details, see Conditional Access Integration.

  • For commercial applications [not PoC], it is recommended that you use a managed deployment option [or deployment using scripts] to deploy Advanced Browser Security - and not a manual deployment method.

Multiple browser profiles

The manual extension deployment methods deploy the extension on the active browser profile only. The extension isn't deployed on other non-active profiles. For full protection of any device, make sure to repeat the end-user portions of the extension deployment procedures [below] on all browser profiles that you want to protect.

If a browser profile is added in the future, that profile won't be automatically protected by the extension. The extension must be manually added to the new profile using the procedures described below.

To mitigate the complexity of managing multiple profiles, you can use a managed deployment method to deploy the extension on the device level. This will add the extension to all browser profiles of all users of the device. See Deploying the extension [Managed deployment].

Note: If a user has multiple protected browser profiles, information for all protected browser profiles will appear under the same user [email address] in the Users page in the Advanced Browser Security console [and in other places inside the console].

Manual deployment methods

The extension can be deployed manually using the following methods:

Manual deployment - using email invitations

Type of deployment

Browsers

Operating Systems

Manual deployment - using email invitations

You can use email invitations to manually deploy the extension to browsers. You use the Advanced Browser Security console to send the email invitations to the end-users. The invitations will invite the end-users to install the extension and to then sign-in to the extension [to activate the extension]. You can send invitations to multiple users at the same time. This simplified user/extension onboarding mechanism is typically useful in smaller organizations and PoC evaluations.

  • Users will need to access the Perception Point Advanced Browser Security extension in the Chrome Web Store, the Edge Add-ons store, the Mozilla Add-ons store, or the Mac App Store [depending on the type of browser that will be protected by the extension].

Step 1: Performed by an admin user

  1. Sign-in to the Advanced Browser Security console - using your admin credentials.

    (You should have received an admin invitation email with the details.)

  2. Click Users, and then click Users.

  3. Click Add new user.

  4. Type the email addresses of your new users. Use any common delimiter to separate multiple addresses.

  5. Select the policy that will be applied to the new users.

  6. Select "Send email invitations asking users to install the extension"

  7. Click Add users.

    An invitation email will be sent to the addresses that you specified. Users can then open the email and follow the on-screen instructions to sign-in to the extension using their work email addresses. The sign-in process with activate the extension.

Step 2: Performed by the end-users

After the end-users receive the invitation email, they will need to:

  1. Click on the "Add extension" link in the email. The link will direct them to the extension in the correct extension store [Chrome Web Store, Edge Add-ons store, Mozilla Add-ons store, or Mac App Store] depending on the type of browser into which they are signed-in.

  2. Add the extension to their browsers, and then sign-in to the extension with their work email addresses.

  3. Receive a one-time verification code that is sent to their work email addresses.

  4. Enter the verification code to complete the deployment and sign-in process. When the sign-in is successful, the extension will be activated.

Repeat Step 2 for each browser profile that the end-user wants to protect.

Important:

  • Make sure to activate the extension on all profiles on which the extension is installed. See Extension deployment status below.

  • After installing the extension, any browsers that were open during the installation should be restarted. This will enable all open tabs in the browser to be protected by Advanced Browser Security.

  • If the extension is disabled and then re-enabled, any browsers that were open when the extension was re-enabled should be restarted. This will enable all open tabs in the browser to be protected by Advanced Browser Security.

  • Google Chrome

  • Microsoft Edge

  • Firefox

  • Safari

  • Windows

  • MacOS

Manual deployment - using a store link [Safari]

Type of deployment

Browsers

Operating Systems

Manual deployment - using a store link [Safari]

End-users can manually add the extension to Safari browsers. This simplified user onboarding mechanism is typically useful in smaller organizations and PoC evaluations.

  • This procedure applies to MacOS only.

  • Users will need to access the Perception Point Advanced Browser Security extension in the Mac App Store.

Step 1: Add new users

  1. Add the required new users in the Advanced Browser Security console. For details, see Adding new endpoint users.

    When adding the new users, don't select the Send email invitations asking users to install the extension check box.

Step 2: Get and distribute a link to the extension in the Mac App Store

  1. In the Advanced Browser Security console, select Settings > Deployment options.

  2. Under Installing the extension to endpoints, click Deploying on Safari.

  3. Copy the URL of the App in the Mac App Store to the clipboard.

  4. Distribute the URL/link - by email, Slack, or any other method - to make the extension available to end-users.

Step 3: Performed by the end-users

Users will need to:

  1. Use the link to access the Perception Point Advanced Browser Security extension in the Mac App Store.

  2. Add the extension to their Safari browsers.

    After getting and then adding the extension, you'll see the following dialog box:

  3. Click "Enable Advanced Browser Security"

    The following screen will appear:

  4. Select the check box on the left of "Advanced Browser Security". You will be asked to confirm that you want to turn ON the extension.

    After you turn ON the extension, the buttons in the "Permissions" section of the Extensions dialog box will be enabled.

  5. Click "Always Allow on Every Website…"

  6. Make sure to allow the ABS Browser Extension on all websites by clicking "Always Allow on Every Website"

    A yellow note will appear in the "Permissions" section of the Extensions dialog box, as shown below:

    1. The following sign-in screen will open in Safari:

  7. Enter your email address so that the correct policy will be assigned - and then click Next.

    The extension should now be installed on your computer, and fully functional.

Step 4

Repeat Step 3 for each browser profile that the end-user wants to protect.

Important:

  • Make sure to activate the extension on all profiles on which the extension is installed. See Extension deployment status below.

  • After installing the extension, any browsers that were open during the installation should be restarted. This will enable all open tabs in the browser to be protected by Advanced Browser Security.

  • If the extension is disabled and then re-enabled, any browsers that were open when the extension was re-enabled should be restarted. This will enable all open tabs in the browser to be protected by Advanced Browser Security.

  • Safari

  • MacOS

 

Extension deployment status

The orange "Advanced Browser Security" icon on the right of the browser toolbar indicates if the extension has been installed, and if the extension has been activated:

The extension has been deployed - but not yet activated

The extension has been deployed - and activated

See also: