[vel0city]

> Can you elaborate on why you think that Firefox is inherently insecure in some way for accessing Google workspaces?

Allowing users running who knows what version of Firefox (or any "non-validated"/unmanaged browser, not necessarily just Firefox) browser running who knows what extensions can be pretty unsafe. There are lots of malicious extensions out there that are stupid simple to install.

In the Workspace world, Chrome can be configured and enforced to have certain kinds of settings applied. Only allowing certain extensions. Ensure certain version ranges. That sort of thing.

[dminik]

I'm pretty sure Firefox is configurable using AD. So is automatically updating (not sure about freezing versions).

If you don't want your user to run whatever version with whatever extension you can do that.

[vel0city]

Sure. But there's generally no standardized function ensuring they're actually only using that specifically configured browser when logging in. What happens when they try to log in from some other device? What happens when they manage to load a browser on to that machine?

This feature supposedly ensures (or at least pushes users to) only the approved browsers running approved configurations are allowed to log in to the company's instances of Workspace.