Chrome Enterprise Premium Server
FreeNot checkedA Model Context Protocol (MCP) server for Chrome Enterprise Premium that exposes DLP rules, content detectors, connector policies, browser telemetry, and licens
About
A Model Context Protocol (MCP) server for Chrome Enterprise Premium that exposes DLP rules, content detectors, connector policies, browser telemetry, and license management as MCP tools, enabling any MCP-compatible AI agent to inspect and configure a Chrome Enterprise environment.
README
A Model Context Protocol (MCP) server for Chrome Enterprise Premium (CEP). CEP extends Chrome's built-in security with Data Loss Prevention (DLP), real-time threat protection (phishing and malware scanning), and Context-Aware Access controls. This server exposes CEP's DLP rules, content detectors, connector policies, browser telemetry, and license management as MCP tools, so any MCP-compatible AI agent can inspect and configure a Chrome Enterprise environment.
Prerequisites
Before setting up the MCP server, ensure you have the following:
- Node.js & npm: Node.js version
20.0.0or higher installed locally. - Google Workspace Account:
- Any Workspace edition with a Chrome Enterprise Premium license.
- An administrator role in the Admin Console (Super Admin or delegated with Chrome Management and DLP permissions). Standard Workspace accounts (or Google Cloud IAM permissions alone) do not grant access and will return
403 Permission Deniederrors with no indication that a Workspace role is missing.
- OAuth App Trust (if required): If your organization restricts third-party app access, a Super Admin must trust the OAuth client in the Admin Console before you can authenticate.
- MCP Client: A compatible MCP host application (such as Gemini CLI, Claude Desktop, Cursor, Windsurf, or VS Code).
Quick start
Get up and running in less than 2 minutes using the bundled Google-managed OAuth client. No repository cloning required!
1. Connect your MCP client
The server uses stdio transport; your MCP client launches it as a child process. Depending on your client, connect the server using one of the following methods:
If you are using the Gemini CLI, you can install this repository directly as an extension with a single command. This automatically configures the MCP connection and loads the built-in AI guidance rules:
gemini extensions install https://github.com/google/chrome-enterprise-premium-mcp
For all other MCP-compatible clients (such as Claude Desktop, Cursor, Windsurf, or VSCode), add this configuration block to your client's settings file (e.g., claude_desktop_config.json or ~/.gemini/settings.json):
{
"mcpServers": {
"cep": {
"command": "npx",
"args": ["-y", "@google/chrome-enterprise-premium-mcp@latest"],
"env": { "GCP_STDIO": "true" }
}
}
}
2. Query the agent
Restart your MCP client, then ask the agent to perform a check, for example:
"How can you help me use Chrome Enterprise Premium?"
"How do I set up a rule to block uploads of credit card numbers?"
"List my Chrome Enterprise Premium DLP rules."
[!NOTE] Authentication: The first time you run a query that calls a tool requiring authentication, the agent will prompt you to sign in.
- Desktop: A browser tab will open automatically on Google's consent screen.
- Headless/Remote: If you are on SSH, Cloud Shell, or a container, the agent will provide a consent URL. Open it locally, sign in, and paste the redirect URL back to the agent in the chat.
- CLI Fallback: If you prefer to authenticate via the terminal, you can run:
npx @google/chrome-enterprise-premium-mcp auth login
Security & Blast Radius Warning
[!CAUTION] This server is an administrator-level interface to Chrome Enterprise Premium. When you connect it to an MCP client, you can use natural-language prompts to:
- Create and modify DLP rules and content detectors.
- Change connector policies.
- Force-install browser extensions onto every managed Chrome browser.
- Enable Google Cloud APIs on your project.
An attacker who plants hidden instructions in untrusted inputs—mail, documents, scraped pages, ticket bodies—can hijack the connected MCP client through indirect prompt injection. The attacker can then run those tools without your consent.
To reduce the blast radius:
- Connect this server only to MCP clients you trust, on data sources you trust.
- Treat every document, message, and webpage you put in front of the agent as untrusted. It might contain hidden instructions.
- Pay extra attention to mutating tools (
create_*,update_*,enable_*); they have tenant-wide security impact.- Use a dedicated, least-privilege admin account when experimenting.
Workspace Scopes & Permissions
The scope set requested during the "Sign in" consent flow maps directly to the underlying Google APIs needed for the server's tools:
| Scope | API | Used for |
|---|---|---|
openid, userinfo.email |
OpenID Connect | Identifies the logged-in admin in startup output |
chrome.management.policy |
Chrome Policy | Reading and writing connector and extension policies |
chrome.management.reports.readonly |
Chrome Management | Telemetry version counts |
chrome.management.profiles.readonly |
Chrome Management | Listing managed browser profiles |
admin.reports.audit.readonly |
Admin SDK Reports | Fetching Chrome activity logs |
admin.directory.orgunit.readonly |
Admin SDK Directory | Organizational Unit hierarchy |
admin.directory.customer.readonly |
Admin SDK Directory | Customer ID resolution |
apps.licensing |
Enterprise License Manager | CEP subscription and per-user license checks |
cloud-identity.policies |
Cloud Identity | Managing DLP rules and content detectors (CRUD) |
service.management |
Service Usage | Verifying and enabling required Google Cloud APIs |
[!NOTE] OAuth App Trust Required: If your organization restricts third-party app access, a Super Admin must trust the OAuth client in the Admin Console before you can authenticate.
Advanced Authentication Options
For production environments, headless systems, or customized configurations, the server supports alternative auth pathways:
- Custom OAuth Client: To run under your own Google Cloud project instead of the default managed one (enabling you to manage your own consent screen and credentials), see Use a Custom OAuth Client.
- Headless / SSH Sessions: To authenticate on remote hosts or CI runners without a web browser, see Sign In from a Host Without a Browser.
- Hosted Deployments: For Cloud Run, Vertex AI Agent Engine, or service-account automation, see the Authentication Setup Matrix.
Configuration
For environment variables and stdio vs. HTTP transport, see docs/configuration.md.
Available tools and prompts
Prompts
| Prompt | Description |
|---|---|
cep:health |
Health check of the Chrome Enterprise environment (APIs, DLP, connectors, extensions). |
cep:optimize |
Rule-by-rule review with tuning, enforcement, and cleanup recommendations. |
cep:expert |
Manually re-injects the expert persona and rules (useful if the agent loses context). |
Tools
The server exposes tools for reading and managing Chrome Enterprise resources:
- Discovery: get customer ID, list org units, count browser versions, list customer profiles
- Licensing: check CEP subscription status, check per-user license assignment
- DLP: list/create DLP rules, list/create detectors (regex, word list, URL list), create default rule sets
- Connectors: get connector policy status, enable Chrome Enterprise connectors
- Extensions: check SEB extension status, install SEB extension
- Security: get Chrome activity logs, check and enable required APIs
- Knowledge: retrieve documentation from the built-in Chrome Enterprise Premium knowledge base
Architecture
The codebase has three layers: API clients in lib/api/ (one interface +
real implementation per Google API), MCP tools and prompts in tools/ and
prompts/, and the server entry point in mcp-server.js. Integration tests
redirect the real API clients at an in-process Express fake under
test/helpers/. For the directory layout, design patterns, and how the test
backends are wired, see docs/architecture.md.
Troubleshooting
For known issues with auth, permissions, Node.js setup, and MCP client
integration (including the /mcp reload tip when CEP tools do not show up
right after restart), see
docs/troubleshooting.md.
FAQ
For license requirements, Workspace edition, service-account auth, experimental features, and other recurring questions, see docs/faq.md.
Reporting bugs
If something isn't working:
- In Gemini CLI, run
/bugto capture session diagnostics. Attach the generated file to your issue. - Run
npm run presubmitand paste the output; this lets maintainers tell environmental problems from real code bugs. - Describe what you expected vs. what actually happened, including the exact error message.
Contributing
Contributions are welcome! For local development setup, building, testing, and contributor guidelines, please see CONTRIBUTING.md.
Legal
This repository is provided as a reference implementation that customers can explore and adapt under the Apache 2.0 license. It is not an officially supported Google product.
- License: Apache License 2.0
- Terms of Service: Terms of Service
- Privacy Policy: Privacy Policy
- Security: Security Policy
Install Chrome Enterprise Premium Server in Claude Desktop, Claude Code & Cursor
unyly install chrome-enterprise-premium-mcp-serverInstalls into Claude Desktop, Claude Code, Cursor & VS Code — handles npx, uvx and build-from-source repos for you.
First time? Get the CLI: curl -fsSL https://unyly.org/install | sh
Or configure manually
Run in your terminal:
claude mcp add chrome-enterprise-premium-mcp-server -- npx -y @google/chrome-enterprise-premium-mcpFAQ
Is Chrome Enterprise Premium Server MCP free?
Yes, Chrome Enterprise Premium Server MCP is free — one-click install via Unyly at no cost.
Does Chrome Enterprise Premium Server need an API key?
No, Chrome Enterprise Premium Server runs without API keys or environment variables.
Is Chrome Enterprise Premium Server hosted or self-hosted?
Self-hosted: the server runs locally on your machine via the install command above.
How do I install Chrome Enterprise Premium Server in Claude Desktop, Claude Code or Cursor?
Open Chrome Enterprise Premium Server on unyly.org, pick your client tab (Claude Desktop, Claude Code, Cursor) and press Install — the config is generated automatically, no JSON editing.
Related MCPs
Playwright
Browser automation, scraping, screenshots
by MicrosoftPuppeteer
Browser automation and web scraping.
by modelcontextprotocolopentabs-dev/opentabs
Plugin-based MCP server + Chrome extension that gives AI agents access to web applications through the user's authenticated browser session. 100+ plugins with a
by opentabs-devrobhunter/agentdeals
1,500+ developer infrastructure deals, free tiers, and startup programs across 54 categories. Search deals, compare vendors, plan stacks, and track pricing chan
by robhunterCompare Chrome Enterprise Premium Server with
Not sure what to pick?
Find your stack in 60 seconds
Author?
Embed badge for your README
Browse similar
All browse MCPs
