Description:
The possibility to modify flag configurations on a device on chrome://flags link via Admin Console

Use case:
as per device support case number 17807935, client had some issues with unauthorized access or manipulation of the flag settings to be able to modify the "Enable Account Manager" flag which enables Chrome OS Account Manager.

Motivation:
client has learned by enabling such feature, it allows users to bypass chrome policies specifically for signing in and out of the Google account on an issued Chromebook. Referencing this link https://chromium-review.googlesource.com/c/chromium/src/+/1190522/

Existing workarounds:
One workaround that was discovered by the customer is to blacklist the URL chrome://flags so that users will not have any access to those, but needs to disable or set to default the current flag for Enable Account Manager, and through replicating the issue we have discovered that by clearing user data  through Device Management > Chrome Management > Device Settings, it brings back the flag to default, but in doing so, it deletes all local data on the Chromebook.