I used this one and it worked fine.
https://lew.im/2017/03/auto-update-chrome/
I'm still using Hannes Juutilainen's script as a post-install task to activate Chrome's self-updater:
https://github.com/hjuutilainen/adminscripts/blob/master/chrome-enable-autoupdates.py
Once all the update pieces are setup using the script above, I discovered you can update Chrome using the following:
/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/MacOS/ksadmin -i
-i (or --install) is not a documented flag that I can find, but it works in my testing.
For what it's worth I just pushed Chrome to a large number of systems via the installer package and have had zero complaints regarding lost user settings, plugins, etc. I do have a prompt built using JamfHelper to allow for deferral and notify the user that Chrome will be quitting, giving them a chance to close Chrome first.
@jkaigler - I tried this but did not seem to work for us, we have various versions out there so maybe it could be not suitable in our environment.
@georgecm12 Thanks, I will get testing on this and see if this works.
@ablend I have been testing pushing a new pkg with the Chrome update via Patch Management and this seems to work as not had anyone complain. Just conscious that if i push globally 1000+ endpoints it will remove peoples profiles. Guess more testing may help.
Frustrating that it seems Google's enterprise help page is outdated....
We use a script, for both firefox and chrome, the chrome one looks like:
#!/bin/sh
# Get current stable build version number of Chrome from the web, do this in a single line to keep it encapsulated
chrome_latest_stable="$(curl https://omahaproxy.appspot.com/all | grep "mac,stable" | sed "s/,/ /g" | awk '{print $3}')"
# Get version number on currently installed Chrome app
installed_version="$(/Applications/Google Chrome.app/Contents/MacOS/Google Chrome --version | grep -iE "[0-9.]{10,20}" | tr -d " <>-:;/,&"=#[a-z][A-Z]")"
DOWNLOAD_URL="https://dl.google.com/chrome/mac/stable/GGRO/googlechrome.dmg"
install_Chrome() {
# Create a temporary directory in which to mount the .dmg
tmp_mount=`/usr/bin/mktemp -d /tmp/chrome.XXXX`
# Attach the install DMG directly from Google's servers (ensuring HTTPS)
hdiutil attach "$( eval echo "${DOWNLOAD_URL}" )" -nobrowse -quiet -mountpoint "${tmp_mount}"
rm -fR "/Applications/Google Chrome.app"
ditto "${tmp_mount}/Google Chrome.app" "/Applications/Google Chrome.app"
# Let things settle down
sleep 1
# Detach the dmg and remove the temporary mountpoint
hdiutil detach "${tmp_mount}" && /bin/rm -rf "${tmp_mount}"
if [ -e "/Applications/Google Chrome.app" ]; then
echo "******Latest version of Chrome is installed on target Mac.******"
fi
}
check_Running ()
{
# To find if the app is running, use:
ps -A | grep "Google Chrome.app" | grep -v "grep" > /tmp/RunningApps.txt
if grep -q "Google Chrome.app" /tmp/RunningApps.txt;
then
echo "******Application is currently running on target Mac. Installation of Chrome cannot proceed.******"
exit 1;
else
echo "******Application is not running on target Mac. Proceeding...******"
install_Chrome
exit 0
fi
}
# If the version installed differs at all from the available version
# then we want to update
case "${installed_version}" in
"${chrome_latest_stable}")
echo "****** Chrome version checked OK (${latest_stable}) ******"
;;
echo "****** Chrome version differs - installed: ${installed_version}, available: ${latest_stable} ******"
check_Running
;;
esac
exit 0;
@dsavageED Thanks for the script, I just ran it on a VM which has an old Chrome installed and it ran fine but shows/result is Chrome is up to date but from the Get Info, it is not? Any ideas? See image attached
@privatepilot
...worried it would remove user profiles etc if reinstalled etc.
Whichever method you choose, removing and installing the app won't remove the user profiles in any of these methods.
@dsavageED below is the error that we're getting. We've added our proxy before the script run so below is line 26.
# Get version number on currently installed Chrome app
installed_version="$(/Applications/Google Chrome.app/Contents/MacOS/Google Chrome --version | grep -iE "[0-9.]{10,20}" | tr -d " <>-:;/,&"=#[a-z][A-Z]")"
After doing couple of testing on Mojave devices, the script works as it should. We're hitting the error about with Catalina.
@dsavageED
Mind sharing the script you use for Firefox as well? I do like this since it stops the action if the program is opened. However I wish there was a way to make this script happen using Patch Policies and then it prompts the user to quit the app so it can update.
Gabe Shackney
Princeton Public Schools
@gshackney Try this: create an empty package in Composer, add the script to downloads/installs the app as a Post-Flight script to the empty package, and now you can use that with patch management policies. Basically the only payload in the package is the post-flight script that makes everything happen.
@ponyboy When adding the postflight script Composer states it will be ignored as Flat Packages. How do I trigger a postflight script to run when launching the pkg created by Cpmposer?
We use the Jamf Patch Management option, with pkg's and it doesn't appear to have any impact on settings or user profiles.
Thanks @dsavageED
I modified your script to use the pkg installer instead as it has the option to upgrade even if the chrome is in use
@xtian - any chance you'd wanna share that script :)
@Maxb Script is not needed unless you need the version info, I just set up a policy to execute the following command:
curl -L https://dl.google.com/dl/chrome/mac/universal/stable/gcem/GoogleChrome.pkg -o /tmp/GoogleChrome.pkg && installer -pkg /tmp/GoogleChrome.pkg -target / -verbose
Hello all, does anyone have knowledge of an option to force chrome update using the terminal? is there a way to have like a softwareupdate -i but for chrome or trig through the terminal the chrome update agent?
We use a script, for both firefox and chrome, the chrome one looks like:
#!/bin/sh
# Get current stable build version number of Chrome from the web, do this in a single line to keep it encapsulated
chrome_latest_stable="$(curl https://omahaproxy.appspot.com/all | grep "mac,stable" | sed "s/,/ /g" | awk '{print $3}')"
# Get version number on currently installed Chrome app
installed_version="$(/Applications/Google Chrome.app/Contents/MacOS/Google Chrome --version | grep -iE "[0-9.]{10,20}" | tr -d " <>-:;/,&"=#[a-z][A-Z]")"
DOWNLOAD_URL="https://dl.google.com/chrome/mac/stable/GGRO/googlechrome.dmg"
install_Chrome() {
# Create a temporary directory in which to mount the .dmg
tmp_mount=`/usr/bin/mktemp -d /tmp/chrome.XXXX`
# Attach the install DMG directly from Google's servers (ensuring HTTPS)
hdiutil attach "$( eval echo "${DOWNLOAD_URL}" )" -nobrowse -quiet -mountpoint "${tmp_mount}"
rm -fR "/Applications/Google Chrome.app"
ditto "${tmp_mount}/Google Chrome.app" "/Applications/Google Chrome.app"
# Let things settle down
sleep 1
# Detach the dmg and remove the temporary mountpoint
hdiutil detach "${tmp_mount}" && /bin/rm -rf "${tmp_mount}"
if [ -e "/Applications/Google Chrome.app" ]; then
echo "******Latest version of Chrome is installed on target Mac.******"
fi
}
check_Running ()
{
# To find if the app is running, use:
ps -A | grep "Google Chrome.app" | grep -v "grep" > /tmp/RunningApps.txt
if grep -q "Google Chrome.app" /tmp/RunningApps.txt;
then
echo "******Application is currently running on target Mac. Installation of Chrome cannot proceed.******"
exit 1;
else
echo "******Application is not running on target Mac. Proceeding...******"
install_Chrome
exit 0
fi
}
# If the version installed differs at all from the available version
# then we want to update
case "${installed_version}" in
"${chrome_latest_stable}")
echo "****** Chrome version checked OK (${latest_stable}) ******"
;;
echo "****** Chrome version differs - installed: ${installed_version}, available: ${latest_stable} ******"
check_Running
;;
esac
exit 0;
@dsavageED wrote:
# Get version number on currently installed Chrome app
installed_version="$(/Applications/Google Chrome.app/Contents/MacOS/Google Chrome --version | grep -iE "[0-9.]{10,20}" | tr -d " <>-:;/,&"=#[a-z][A-Z]")"
Curious why defaults won't work:
$ defaults read /Applications/Google\\ Chrome.app/Contents/Info CFBundleShortVersionString
103.0.5060.114
This seems to work:
sudo /Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/MacOS/ksadmin -P com.google.chrome -i
I am still testing...
This seems to work:
sudo /Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/MacOS/ksadmin -P com.google.chrome -i
I am still testing...
Hello. since my last post, i have been using this command successfully. i am running it using a script
/Library/Google/GoogleSoftwareUpdate/GoogleSoftwareUpdate.bundle/Contents/Resources/CheckForUpdatesNow.commandIt needs to be run as the loggedin user. for best user experience, you also need to manage chrome and push a configuration profil custom application settings with these keys set
<key>RelaunchNotification</key>
<key>RelaunchNotificationPeriod</key>
<key>RelaunchWindow</key>here are the links and guide lines for setting them.
https://chromeenterprise.google/policies/?policy=RelaunchNotification
https://chromeenterprise.google/policies/?policy=RelaunchNotificationPeriod
https://chromeenterprise.google/policies/?policy=RelaunchWindow
