The Security Insights API lets you enable or disable the chrome security insights feature as well as check its enablement status.
Quick overview of API methods
URLs are relative to https://chromemanagement.googleapis.com/v1/customers/$CUSTOMER
| Description | Relative URL | Http method | Allowed request parameters |
|---|---|---|---|
| Enable insights for your domain and configure chrome connectors for root OU/a specific set of OUs in your domain | /enterprise/securityInsights:enable | POST | Optional: targetOus |
| Disable insights for your domain | /enterprise/securityInsights:disable | POST | |
| Check the enablement status for insights for your domain | /enterprise/securityInsights:checkEnablementStatus | GET |
Admin Privileges
Depending on which method is being invoked, different admin privileges are required.
| Method | Admin privileges required |
|---|---|
| enable | "Organization Units > Read" "Services > Chrome Management > Settings > Manage User Settings" "Services > Chrome DLP > Manage Chrome DLP application insights settings" |
| disable | "Organization Units > Read" "Services > Chrome Management > Settings > Manage User Settings" "Services > Chrome DLP > Manage Chrome DLP application insights settings" |
| checkEnablementStatus | "Organization Units > Read" "Services > Chrome Management > Settings > Manage User Settings" "Services > Chrome DLP > Manage Chrome DLP application insights settings" OR "Services > Chrome DLP > View Chrome DLP application insights settings" |
To manage admin roles and privileges visit "Admin Console -> Admin Roles".
API scopes
Enable and Disable APIs requires the following OAuth scope:
https://www.googleapis.com/auth/chrome.management.securityinsights
For CheckEnablementStatus either of these two scopes can be used:
https://www.googleapis.com/auth/chrome.management.securityinsights
https://www.googleapis.com/auth/chrome.management.securityinsights.readonly
For more information, see the Authentication Overview.