Microsoft has recently re-written Edge so that it is built upon Chromium, which Chrome is also built upon. (Cool Fact: ZENworks ZAPP is also based upon Chromium!) This re-write of Edge has introduced Group Policy limitation upon Edge that has existed in Chrome for a few years. If a device is not part of a Windows Domain, many of the local GPO settings for Chrome/Edge will simply be ignored.
As a result, regardless of the Local GPO settings pushed by ZENworks, those settings would not be effective unless the device was part of a domain, which is not the case for many ZCM managed devices.
ZENworks 2020, however, is able to come to the rescue of non-domain joined devices. ZCM 2020 has introduced support for MDM Management of Windows 10 devices. This allows for management of devices without installing any additional software beyond the Windows 10 Pro or Enterprise operating system. The support in ZCM 2020, however, is only experimental and the management capabilities are limited to MDM registering the device to your ZENworks Zone. Expanded management capabilities are expected in ZCM 2020 Update 2. While the current feature set is quite limited, it is sufficient to meet the secondary requirements for the Edge GPO of being "Enrolled for Device Management".
Simply MDM enroll your Windows 10 Enterprise or Professional device to your ZENworks Zone, and the non-working GPO above will now be honored!
When I say "Simply MDM enroll your Windows" devices, I truly mean "Simply", even if you have never done MDM management before. Follow the steps below and review a few of the troubleshooting steps and one should be able to enable MDM management of Windows 10 devices in a few short minutes. We will be using "Windows Configuration Designer" to create a "PPKG" file and then "installing" that file on the target devices.
Creating the PPKG file with Windows Configuration Designer:
Following those steps will fill in two different sections: Workplace and Certificates.
Deploying PPKG Files to Devices:
Troubleshooting PPKG Installs:
Download Edge Chromium GPO Files:
https://www.microsoft.com/en-us/edge/business/download (Select Get Policy Files)
Add the Chromium Templates to the Group Policy Editor:
Generate Guttural Evil Admin Laugh:
Start creating your Chrome/Edge policies that once again lock down settings that were previously ignored!
If you find this article useful, please be sure to give it a like at the bottom of the page!
To find other articles by Craig Wilson simply follow the link below:
Be sure to "Like" My (and a few others) Cool Solutions below!