Skip to main content
Question

Restrict Chrome Browsing History Deletion & Disable Personal Google Sign-In on Managed iPads

  • July 16, 2026
  • 3 replies
  • 22 views

djs9812
Forum|alt.badge.img+4

I know this has been asked before, but has anyone been successful using Jamf Pro to accomplish either of the following on managed iPads?

  • Prevent students from deleting their Chrome browsing history.
  • Prevent students from signing into Chrome with personal Google accounts (either allowing only our managed Google Workspace accounts or disabling personal sign-in altogether).

If you've gotten this working, would you mind sharing how you configured it? Was it done through a Chrome managed app configuration, Google Workspace policies, Jamf restrictions, or a combination of the three?

 

 

3 replies

dmccluskey
Forum|alt.badge.img+9
  • Valued Contributor
  • July 16, 2026

You are better off using Microsoft Edge it has endless amounts of app configs to accomplish this.

Microsoft Edge Mobile Policy Documentation | Microsoft Learn

 

This is a example.

 

<dict>
  <key>EdgeNewTabPageCustomURL</key>
    <string>www.google.com</string>
    <key>DefaultSearchProviderEnabled</key>
    <true/>
    <key>DefaultSearchProviderName</key>
   <string>Google</string>
    <key>DefaultSearchProviderSearchURL</key>
  <string>https://www.google.com/search?q={searchTerms}</string>
    <key>EdgeDisableShareUsageData</key>
    <true/>
    <key>EditFavoritesEnabled</key>
    <false/>
    <key>EdgeSyncDisabled</key>
    <true/>
    <key>EdgeDisabledFeatures</key>
    <string>password | autofill | coupons | sendtodevices | drop</string>
    <key>PasswordManagerEnabled</key>
    <false/>
    <key>SavingBrowserHistoryDisabled</key>
    <true/>
    <key>EdgeCopilotEnabled</key>
    <false/>
    <key>EdgeImportPasswordsDisabled</key>
    <true/>
    <key>EdgeBlockSignInEnabled</key>
    <true/>
    <key>HideFirstRunExperience</key>
    <true/>
    <key>DefaultBrowserSettingEnabled</key>
    <false/>
 <key>IdleTimeout</key>
     <integer>15</integer>
<key>IdleTimeoutActions</key>
    <array>
  <string>close_tabs</string>
  <string>clear_browsing_history</string>
  <string>clear_cookies_and_other_site_data</string>
    </array>
<key>InPrivateModeAvailability</key>
     <integer>2</integer>
</dict>


Chubs
Forum|alt.badge.img+26
  • Jamf Heroes
  • July 16, 2026

You could enroll your devices into CBCM...wait it’s called Google Chrome Enterprise Core now.  It’s free and a simple token to deploy via config profile from JAMF.  There are two settings in there you can set for this:

You can restrict browser sign-in


Turn on enable all history



There’s not any policy from anywhere to stop them from clearing the history manually (regardless of Chrome or Edge for that matter - since Edge is a re-wrappered Chrome and has the same “switches”).


djs9812
Forum|alt.badge.img+4
  • Author
  • Contributor
  • July 16, 2026

Thanks! I actually have Chrome Enterprise Core set up and those policies configured, but they don't seem to have any effect on our managed iPads.

Students are still able to sign into Chrome with personal Google accounts, and they're still able to clear their browsing history.