- Jamf Nation Community
- Products
- Jamf Pro
- Deploy Google Extension via Jamf Pro Configuration...
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Deploy Google Extension via Jamf Pro Configuration Profile not working any more
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 10-05-2023 02:15 PM
Hi Everyone,
I used takingmoose's JSON file (link: JSON file) to deploy Google Extensions with no problem two weeks ago.
Suddenly, it's not working anymore. The Configuration Profile log shows completed, and I can see it from the Profiles list on Mac. But nothing is being added to Chrome. I tried on different Macs (new provisioned or existing ones). No luck.
I also created different Configuration Profiles with other user's JSON files with no luck.
I also have a Configuration Profile to disable Chrome print Preview, and it works fine. It's just this Extension profile not working at all.
Any Suggestion?
Thank you.
Jack
2 REPLIES 2
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-05-2023 03:02 PM - edited 10-05-2023 03:04 PM
Try this full featured JSON to combine all your chrome settings. I was told cannot confirm that multiple chrome profiles can step on one another. Not the author, but kudos if you recognize your work. You also you did not mention if your extensions were normal,allowed or forced
{
"title": "Google Chrome (com.google.Chrome)",
"description": "Google Chrome Managed Settings",
"properties": {
"CloudReportingEnabled": {
"type": "boolean",
"title": "Enable Cloud Reporting",
"description": "Enables Google Chrome cloud reporting. When this policy is left unset or set to False, there is no data collected or uploaded. When this policy is set to True, the data is collected and uploaded to Google Admin console.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CloudReportingEnabled"
}
],
"property_order": 5
},
"CloudExtensionRequestEnabled": {
"type": "boolean",
"title": "Enable Cloud Extension Install Requests",
"description": "Enables Google Chrome extension installation requests. When the policy CloudReportingEnabled is left unset or set to disabled, this policy will be ignored, extension installation requests are not created or uploaded. When this policy is left unset or set to disabled, extension installation requests are not created or uploaded. When this policy is set to enabled, extension installation requests are created and uploaded to Google Admin console.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CloudExtensionRequestEnabled"
}
],
"property_order": 10
},
"ReportSafeBrowsingData": {
"type": "boolean",
"title": "Report Safe Browsing",
"description": "Report Safe Browsing information.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ReportSafeBrowsingData"
}
],
"property_order": 15
},
"DefaultCookiesSetting": {
"type": "integer",
"title": "Default cookies setting",
"description": "Allows you to set whether websites are allowed to set local data. Setting local data can be either allowed for all websites or denied for all websites.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultCookiesSetting"
}
],
"enum": [
1,
2,
4
],
"options": {
"enum_titles": [
"Allow all sites to set local data",
"Do not allow any site to set local data",
"Keep cookies for the duration of the session"
]
},
"property_order": 20
},
"BlockThirdPartyCookies": {
"type": "boolean",
"title": "Block third party cookies",
"description": "Enabling this setting prevents cookies from being set by web page elements that are not from the domain that is in the browser's address bar.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BlockThirdPartyCookies"
}
],
"property_order": 25
},
"CookiesAllowedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow cookies on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are allowed to set cookies.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CookiesAllowedForUrls"
}
],
"property_order": 30
},
"CookiesBlockedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Block cookies on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are not allowed to set cookies.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CookiesBlockedForUrls"
}
],
"property_order": 35
},
"CookiesSessionOnlyForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Limit cookies from matching URLs to the current session",
"description": "Cookies set by pages matching these URL patterns will be limited to the current session, i.e. they will be deleted when the browser exits.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CookiesSessionOnlyForUrls"
}
],
"property_order": 40
},
"DefaultWebBluetoothGuardSetting": {
"type": "integer",
"title": "Control use of the Web Bluetooth API",
"description": "Allows you to set whether websites are allowed to get access to nearby Bluetooth devices. Access can be completely blocked, or the user can be asked every time a website wants to get access to nearby Bluetooth devices.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultWebBluetoothGuardSetting"
}
],
"enum": [
2,
3
],
"options": {
"enum_titles": [
"Do not allow any site to request access to Bluetooth devices via the Web Bluetooth API",
"Allow sites to ask the user to grant access to a nearby Bluetooth device"
]
},
"property_order": 45
},
"DefaultWebUsbGuardSetting": {
"type": "integer",
"title": "Control use of the WebUSB API",
"description": "Allows you to set whether websites are allowed to get access to connected USB devices. Access can be completely blocked, or the user can be asked every time a website wants to get access to connected USB devices.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultWebUsbGuardSetting"
}
],
"enum": [
2,
3
],
"options": {
"enum_titles": [
"Do not allow any site to request access to USB devices via the WebUSB API",
"Allow sites to ask the user to grant access to a connected USB device"
]
},
"property_order": 50
},
"DefaultImagesSetting": {
"type": "integer",
"title": "Default images setting",
"description": "Allows you to set whether websites are allowed to display images. Displaying images can be either allowed for all websites or denied for all websites.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultImagesSetting"
}
],
"enum": [
1,
2
],
"options": {
"enum_titles": [
"Allow all sites to show all images",
"Do not allow any site to show images"
]
},
"property_order": 55
},
"ImagesAllowedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow images on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are allowed to display images.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ImagesAllowedForUrls"
}
],
"property_order": 60
},
"ImagesBlockedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Block images on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are not allowed to display images.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ImagesBlockedForUrls"
}
],
"property_order": 65
},
"DefaultInsecureContentSetting": {
"type": "integer",
"title": "Default insecure content setting",
"description": "Control use of insecure content exceptions. Allows you to set whether users can add exceptions to allow mixed content for specific sites. If this policy is left not set, users will be allowed to add exceptions to allow blockable mixed content and disable autoupgrades for optionally blockable mixed content.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultInsecureContentSetting"
}
],
"enum": [
2,
3
],
"options": {
"enum_titles": [
"Do not allow any site to load mixed content",
"Allow users to add exceptions to allow mixed content"
]
},
"property_order": 70
},
"InsecureContentAllowedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow insecure content on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are allowed to display blockable (i.e. active) mixed content (i.e. HTTP content on HTTPS sites) and for which optionally blockable mixed content upgrades will be disabled.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=InsecureContentAllowedForUrls"
}
],
"property_order": 75
},
"InsecureContentBlockedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Block insecure content on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are not allowed to display blockable (i.e. active) mixed content (i.e. HTTP content on HTTPS sites), and for which optionally blockable (i.e. passive) mixed content will be upgraded.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=InsecureContentBlockedForUrls"
}
],
"property_order": 80
},
"DefaultJavaScriptSetting": {
"type": "integer",
"title": "Default JavaScript setting",
"description": "Allows you to set whether websites are allowed to run JavaScript. Running JavaScript can be either allowed for all websites or denied for all websites.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultJavaScriptSetting"
}
],
"enum": [
1,
2
],
"options": {
"enum_titles": [
"Allow all sites to run JavaScript",
"Do not allow any site to run JavaScript"
]
},
"property_order": 85
},
"JavaScriptAllowedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow JavaScript on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are allowed to run JavaScript.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=JavaScriptAllowedForUrls"
}
],
"property_order": 90
},
"JavaScriptBlockedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Block JavaScript on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are not allowed to run JavaScript.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=JavaScriptBlockedForUrls"
}
],
"property_order": 95
},
"LegacySameSiteCookieBehaviorEnabled": {
"type": "integer",
"title": "Enable legacy SameSite cookie behavior",
"description": "Allows you to revert all cookies to legacy SameSite behavior.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=LegacySameSiteCookieBehaviorEnabled"
}
],
"enum": [
1,
2
],
"options": {
"enum_titles": [
"Revert to legacy SameSite behavior for cookies on all sites",
"Use SameSite-by-default behavior for cookies on all sites"
]
},
"property_order": 100
},
"LegacySameSiteCookieBehaviorEnabledForDomainList": {
"type": "array",
"items": {
"type": "string",
"title": "Domains"
},
"title": "Enable legacy SameSite cookie behavior for list of domains",
"description": "Cookies set for domains matching these patterns will revert to legacy SameSite behavior. For cookies on domains not covered by the patterns specified here, or for all cookies if this policy is not set, the global default value will be used either from the LegacySameSiteCookieBehaviorEnabled policy, if it is set, or the user's personal configuration otherwise.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=LegacySameSiteCookieBehaviorEnabledForDomainList"
}
],
"property_order": 105
},
"DefaultPluginsSetting": {
"type": "integer",
"title": "Default Flash setting",
"description": "Allows you to set whether websites are allowed to automatically run the Flash plugin. Automatically running the Flash plugin can be either allowed for all websites or denied for all websites.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultPluginsSetting"
}
],
"enum": [
1,
2,
3
],
"options": {
"enum_titles": [
"Allow all sites to automatically run the Flash plugin",
"Block the Flash plugin",
"Click to play"
]
},
"property_order": 110
},
"PluginsAllowedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow the Flash plugin on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are allowed to run the Flash plugin.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PluginsAllowedForUrls"
}
],
"property_order": 115
},
"DefaultNotificationsSetting": {
"type": "integer",
"title": "Default notification setting",
"description": "Allows you to set whether websites are allowed to display desktop notifications. Displaying desktop notifications can be allowed by default, denied by default or the user can be asked every time a website wants to show desktop notifications.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultNotificationsSetting"
}
],
"enum": [
1,
2,
3
],
"options": {
"enum_titles": [
"Allow sites to show desktop notifications",
"Do not allow any site to show desktop notifications",
"Ask every time a site wants to show desktop notifications"
]
},
"property_order": 120
},
"NotificationsAllowedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow notifications on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are allowed to display notifications.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NotificationsAllowedForUrls"
}
],
"property_order": 125
},
"NotificationsBlockedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Block notifications on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are not allowed to display notifications.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NotificationsBlockedForUrls"
}
],
"property_order": 130
},
"PluginsBlockedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Block the Flash plugin on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are not allowed to run the Flash plugin.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PluginsBlockedForUrls"
}
],
"property_order": 135
},
"DefaultPopupsSetting": {
"type": "integer",
"title": "Default popups setting",
"description": "Allows you to set whether websites are allowed to show pop-ups. Showing popups can be either allowed for all websites or denied for all websites.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultPopupsSetting"
}
],
"enum": [
1,
2
],
"options": {
"enum_titles": [
"Allow all sites to show pop-ups",
"Do not allow any site to show popups"
]
},
"property_order": 140
},
"PopupsAllowedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow popups on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are allowed to open popups.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PopupsAllowedForUrls"
}
],
"property_order": 145
},
"PopupsBlockedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Block popups on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are not allowed to open popups.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PopupsBlockedForUrls"
}
],
"property_order": 150
},
"AutoSelectCertificateForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Automatically select client certificates for these sites",
"description": "Allows you to specify a list of url patterns that specify sites for which Google Chrome should automatically select a client certificate, if the site requests a certificate.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AutoSelectCertificateForUrls"
}
],
"property_order": 155
},
"DefaultGeolocationSetting": {
"type": "integer",
"title": "Default geolocation setting",
"description": "Allows you to set whether websites are allowed to track the users' physical location. Tracking the users' physical location can be allowed by default, denied by default or the user can be asked every time a website requests the physical location.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultGeolocationSetting"
}
],
"enum": [
1,
2,
3
],
"options": {
"enum_titles": [
"Allow sites to track the users' physical location",
"Do not allow any site to track the users' physical location",
"Ask whenever a site wants to track the users' physical location"
]
},
"property_order": 160
},
"DefaultMediaStreamSetting": {
"type": "integer",
"title": "Default mediastream setting",
"description": "Allows you to set whether websites are allowed to get access to media capture devices. Access to media capture devices can be allowed by default, or the user can be asked every time a website wants to get access to media capture devices. - Documentation doesn't indicate when this was deprecated, but AudioCaptureAllowed was added in M25, so making an assumption.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultMediaStreamSetting"
}
],
"enum": [
2,
3
],
"options": {
"enum_titles": [
"Do not allow any site to access the camera and microphone",
"Ask every time a site wants to access the camera and/or microphone"
]
},
"property_order": 165
},
"RegisteredProtocolHandlers": {
"type": "array",
"items": {
"type": "object",
"properties": {
"default": {
"type": "boolean",
"default": true
},
"protocol": {
"type": "string"
},
"url": {
"type": "string"
}
}
},
"title": "Register protocol handlers",
"description": "Allows you to register a list of protocol handlers. This can only be a recommended policy. The property |protocol| should be set to the scheme such as 'mailto' and the property |url| should be set to the URL pattern of the application that handles the scheme. The pattern can include a '%s', which if present will be replaced by the handled URL.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RegisteredProtocolHandlers"
}
],
"property_order": 170
},
"AutoplayAllowed": {
"type": "boolean",
"title": "Allow media autoplay",
"description": "Allows you to control if videos can play automatically (without user consent) with audio content in Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AutoplayAllowed"
}
],
"property_order": 175
},
"AutoplayWhitelist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow media autoplay on a whitelist of URL patterns",
"description": "Controls the whitelist of URL patterns that autoplay will always be enabled on.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AutoplayWhitelist"
}
],
"property_order": 180
},
"AutoplayAllowlist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow media autoplay on an allow list of URL patterns",
"description": "Controls the allow list of URL patterns that autoplay will always be enabled on.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AutoplayAllowlist"
}
],
"property_order": 185
},
"DefaultSearchProviderAlternateURLs": {
"type": "array",
"items": {
"type": "string"
},
"title": "List of alternate URLs for the default search provider",
"description": "Specifies a list of alternate URLs that can be used to extract search terms from the search engine. The URLs should contain the string '{searchTerms}', which will be used to extract the search terms.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderAlternateURLs"
}
],
"property_order": 190
},
"DefaultSearchProviderEnabled": {
"type": "boolean",
"title": "Enable the default search provider",
"description": "Enables the use of a default search provider.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderEnabled"
}
],
"property_order": 195
},
"DefaultSearchProviderEncodings": {
"type": "array",
"items": {
"type": "string"
},
"title": "Default search provider encodings",
"description": "Specifies the character encodings supported by the search provider. Encodings are code page names like UTF-8, GB2312, and ISO-8859-1. They are tried in the order provided.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderEncodings"
}
],
"property_order": 200
},
"DefaultSearchProviderIconURL": {
"type": "string",
"title": "Default search provider icon",
"description": "Specifies the favorite icon URL of the default search provider.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderIconURL"
}
],
"property_order": 205
},
"DefaultSearchProviderImageURL": {
"type": "string",
"title": "Parameter providing search-by-image feature for the default search provider",
"description": "Specifies the URL of the search engine used to provide image search. Search requests will be sent using the GET method. If the DefaultSearchProviderImageURLPostParams policy is set then image search requests will use the POST method instead.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderImageURL"
}
],
"property_order": 210
},
"DefaultSearchProviderImageURLPostParams": {
"type": "string",
"title": "Parameters for image URL which uses POST",
"description": "Specifies the parameters used when doing image search with POST. It consists of comma-separated name/value pairs. If a value is a template parameter, like {imageThumbnail} in above example, it will be replaced with real image thumbnail data.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderImageURLPostParams"
}
],
"property_order": 215
},
"DefaultSearchProviderKeyword": {
"type": "string",
"title": "Default search provider keyword",
"description": "Specifies the keyword, which is the shortcut used in the omnibox to trigger the search for this provider.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderKeyword"
}
],
"property_order": 220
},
"DefaultSearchProviderName": {
"type": "string",
"title": "Default search provider name",
"description": "Specifies the name of the default search provider. If left empty or not set, the host name specified by the search URL will be used.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderName"
}
],
"property_order": 225
},
"DefaultSearchProviderNewTabURL": {
"type": "string",
"title": "Default search provider new tab page URL",
"description": "Specifies the URL that a search engine uses to provide a new tab page.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderNewTabURL"
}
],
"property_order": 230
},
"DefaultSearchProviderSearchURL": {
"type": "string",
"title": "Default search provider search URL",
"description": "Specifies the URL of the search engine used when doing a default search. The URL should contain the string '{searchTerms}', which will be replaced at query time by the terms the user is searching for.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderSearchURL"
}
],
"property_order": 235
},
"DefaultSearchProviderSearchURLPostParams": {
"type": "string",
"title": "Parameters for search URL which uses POST",
"description": "Specifies the parameters used when searching a URL with POST. It consists of comma-separated name/value pairs. If a value is a template parameter, like {searchTerms} in above example, it will be replaced with real search terms data.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderSearchURLPostParams"
}
],
"property_order": 240
},
"DefaultSearchProviderSuggestURL": {
"type": "string",
"title": "Default search provider suggest URL",
"description": "Specifies the URL of the search engine used to provide search suggestions. The URL should contain the string '{searchTerms}', which will be replaced at query time by the text the user has entered so far.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderSuggestURL"
}
],
"property_order": 245
},
"DefaultSearchProviderSuggestURLPostParams": {
"type": "string",
"title": "Parameters for suggest URL which uses POST",
"description": "Specifies the parameters used when doing suggestion search with POST. It consists of comma-separated name/value pairs. If a value is a template parameter, like {searchTerms} in above example, it will be replaced with real search terms data.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderSuggestURLPostParams"
}
],
"property_order": 250
},
"ExtensionAllowedTypes": {
"type": "array",
"items": {
"type": "string",
"enum": [
"extension",
"hosted_app",
"legacy_packaged_app",
"platform_app",
"theme",
"user_script"
],
"options": {
"enum_titles": [
"Extension",
"Hosted App",
"Legacy Packaged App",
"Platform App",
"Theme",
"User Script"
]
}
},
"title": "Types of extensions/apps that are allowed to be installed",
"description": "Controls which app/extension types are allowed to be installed and limits runtime access.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ExtensionAllowedTypes"
}
],
"property_order": 255
},
"ExtensionInstallSources": {
"type": "array",
"items": {
"type": "string"
},
"title": "URL patterns to allow extension, app, and user script installs from",
"description": "Allows you to specify which URLs are allowed to install extensions, apps, and themes.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ExtensionInstallSources"
}
],
"property_order": 260
},
"ExtensionInstallBlacklist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Extension ID Blacklist",
"description": "Allows you to specify which extensions the users can NOT install. Extensions already installed will be disabled if denied, without a way for the user to enable them. Once an extension is disabled due to the blacklist being removed, it will automatically get re-enabled. Enter * to deny all extensions.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ExtensionInstallBlacklist"
}
],
"property_order": 265
},
"ExtensionInstallBlocklist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Extension ID Blocklist",
"description": "Allows you to specify which extensions the users can NOT install. Extensions already installed will be disabled if denied, without a way for the user to enable them. Once an extension is disabled due to the blocklist being removed, it will automatically get re-enabled. Enter * to deny all extensions.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ExtensionInstallBlocklist"
}
],
"property_order": 270
},
"ExtensionInstallWhitelist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Extension ID Whitelist",
"description": "Allows you to specify which extensions are not subject to the blacklist.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ExtensionInstallWhitelist"
}
],
"property_order": 275
},
"ExtensionInstallAllowlist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Extension ID Allowlist",
"description": "Allows you to specify which extensions are not subject to the blocklist.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ExtensionInstallAllowlist"
}
],
"property_order": 280
},
"ExtensionManifestV2Availability": {
"type": "integer",
"title": "ExtensionManifestV2Availability",
"description": "Control if Manifest v2 extensions can be used by browser.",
"links": [
{
"rel": "More information",
"href": "https://chromeenterprise.google/policies/#ExtensionManifestV2Availability"
}
],
"enum": [
0,
1,
2,
3
],
"options": {
"enum_titles": [
"Default browser behavior",
"Manifest v2 is disabled",
"Manifest v2 is enabled",
"Manifest v2 is enabled for forced extensions only"
]
},
"property_order": 285
},
"ExtensionInstallForcelist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Extension/App IDs and update URLs to be silently installed",
"description": "Specifies a list of apps and extensions that are installed silently, without user interaction, and which cannot be uninstalled nor disabled by the user. All permissions requested by the apps/extensions are granted implicitly, without user interaction, including any additional permissions requested by future versions of the app/extension. Furthermore, permissions are granted for the enterprise.deviceAttributes and enterprise.platformKeys extension APIs. (These two APIs are not available to apps/extensions that are not force-installed.)",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ExtensionInstallForcelist"
}
],
"property_order": 290
},
"ExtensionSettings": {
"type": "object",
"title": "Extension management settings",
"description": "Configures extension management settings for Google Chrome. A default configuration can be set for the special ID \"*\"",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ExtensionSettings"
}
],
"properties": {
"{{key}}": {
"type": "string",
"title": "Extension ID"
},
"{{value}}": {
"type": "object",
"properties": {
"installation_mode": {
"type": "string",
"description": "Maps to a string indicating the installation mode for the extension.",
"enum": [
"allowed",
"blocked",
"force_installed",
"normal_installed"
],
"options": {
"enum_titles": [
"Allowed",
"Blocked",
"Force Installed",
"Normal Installed"
]
}
},
"update_url": {
"type": "string",
"description": "Maps to a string indicating where Chrome can download a force_installed or normal_installed extension."
},
"blocked_permissions": {
"type": "array",
"items": {
"type": "string",
"links": [
{
"rel": "More information",
"href": "https://developer.chrome.com/extensions/declare_permissions"
}
],
"enum": [
"activeTab",
"alarms",
"background",
"bookmarks",
"browsingData",
"certificateProvider",
"clipboardRead",
"clipboardWrite",
"contentSettings",
"contextMenus",
"cookies",
"debugger",
"declarativeContent",
"declarativeNetRequest",
"declarativeWebRequest",
"desktopCapture",
"displaySource",
"dns",
"documentScan",
"downloads",
"enterprise.deviceAttributes",
"enterprise.hardwarePlatform",
"enterprise.platformKeys",
"experimental",
"fileBrowserHandler",
"fileSystemProvider",
"fontSettings",
"gcm",
"geolocation",
"history",
"identity",
"idle",
"idltest",
"management",
"nativeMessaging",
"networking.config",
"notifications",
"pageCapture",
"platformKeys",
"power",
"printerProvider",
"privacy",
"processes",
"proxy",
"sessions",
"signedInDevices",
"storage",
"system.cpu",
"system.display",
"system.memory",
"system.storage",
"tabCapture",
"tabs",
"topSites",
"tts",
"ttsEngine",
"unlimitedStorage",
"vpnProvider",
"wallpaper",
"webNavigation",
"webRequest",
"webRequestBlocking"
]
},
"description": "Maps to a list of strings indicating the blocked API permissions for the extension."
},
"minimum_version_required": {
"type": "string",
"description": "Maps to a version string."
},
"install_sources": {
"type": "array",
"items": {
"type": "string"
},
"description": "Each item in this list is an extension-style match pattern."
},
"allowed_types": {
"type": "array",
"items": {
"type": "string",
"enum": [
"extension",
"theme",
"user_script",
"hosted_app",
"legacy_packaged_app",
"platform_app"
]
},
"description": "This setting whitelists the allowed types of extension/apps that can be installed in Google Chrome."
},
"blocked_install_message": {
"type": "string",
"description": "This maps to a string specifying the error message to display to users if they're blocked from installing an extension."
},
"runtime_blocked_hosts": {
"type": "array",
"items": {
"type": "string"
},
"description": "Maps to a list of strings representing hosts whose webpages the extension will be blocked from modifying."
},
"runtime_allowed_hosts": {
"type": "array",
"items": {
"type": "string"
},
"description": "Maps to a list of strings representing hosts that an extension can interact with regardless of whether they are listed in \"runtime_blocked_hosts\"."
}
}
}
},
"property_order": 295
},
"BlockExternalExtensions": {
"type": "boolean",
"title": "Block external extensions",
"default": false,
"description": "Blocks external extensions from being installed.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BlockExternalExtensions"
}
],
"property_order": 300
},
"ExtensionAllowInsecureUpdates": {
"type": "boolean",
"title": "Allow insecure extension updates",
"default": false,
"description": "Allow insecure algorithms in integrity checks on extension updates and installs.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ExtensionAllowInsecureUpdates"
}
],
"property_order": 305
},
"EnableMediaRouter": {
"type": "boolean",
"title": "Enable Google Cast",
"default": true,
"description": "If this policy is set to true or is not set, Google Cast will be enabled, and users will be able to launch it from the app menu, page context menus, media controls on Cast-enabled websites, and (if shown) the Cast toolbar icon.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=EnableMediaRouter"
}
],
"property_order": 310
},
"ShowCastIconInToolbar": {
"type": "boolean",
"title": "Show the Google Cast toolbar icon",
"default": false,
"description": "If this policy is set to true, the Cast toolbar icon will always be shown on the toolbar or the overflow menu, and users will not be able to remove it.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ShowCastIconInToolbar"
}
],
"property_order": 315
},
"AllowCrossOriginAuthPrompt": {
"type": "boolean",
"title": "Cross-origin HTTP Basic Auth prompts",
"default": false,
"description": "Controls whether third-party sub-content on a page is allowed to pop-up an HTTP Basic Auth dialog box.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AllowCrossOriginAuthPrompt"
}
],
"property_order": 320
},
"AuthNegotiateDelegateByKdcPolicy": {
"type": "boolean",
"title": "Kerberos delegation KDC policy",
"default": false,
"description": "Use KDC policy to delegate credentials. Controls whether approval by KDC policy is respected to decide whether to delegate Kerberos tickets.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AuthNegotiateDelegateByKdcPolicy"
}
],
"property_order": 325
},
"AuthNegotiateDelegateWhitelist": {
"type": "string",
"title": "Kerberos delegation server whitelist",
"description": "Servers that Google Chrome may delegate to.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AuthNegotiateDelegateWhitelist"
}
],
"property_order": 330
},
"AuthNegotiateDelegateAllowlist": {
"type": "string",
"title": "Kerberos delegation server allowlist",
"description": "Servers that Google Chrome may delegate to.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AuthNegotiateDelegateAllowlist"
}
],
"property_order": 335
},
"AuthSchemes": {
"type": "string",
"title": "Supported authentication schemes",
"description": "Specifies which HTTP authentication schemes are supported by Google Chrome. Possible values are 'basic', 'digest', 'ntlm' and 'negotiate'. Separate multiple values with commas.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AuthSchemes"
}
],
"property_order": 340
},
"AuthServerWhitelist": {
"type": "string",
"title": "Authentication server whitelist",
"description": "Specifies which servers should be whitelisted for integrated authentication. Integrated authentication is only enabled when Google Chrome receives an authentication challenge from a proxy or from a server which is in this permitted list.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AuthServerWhitelist"
}
],
"property_order": 345
},
"BasicAuthOverHttpEnabled": {
"type": "boolean",
"title": "Allow Basic authentication for HTTP",
"description": "Setting the policy to Enabled or leaving it unset will allow Basic authentication challenges received over non-secure HTTP. Setting the policy to Disabled forbids non-secure HTTP requests from using the Basic authentication scheme; only secure HTTPS is allowed.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AuthServerWhitelist"
}
],
"property_order": 350
},
"AuthServerAllowlist": {
"type": "string",
"title": "Authentication server allowlist",
"description": "Specifies which servers should be allowed for integrated authentication. Integrated authentication is only enabled when Google Chrome receives an authentication challenge from a proxy or from a server which is in this permitted list.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AuthServerAllowlist"
}
],
"property_order": 355
},
"DisableAuthNegotiateCnameLookup": {
"type": "boolean",
"title": "Disable CNAME lookup when negotiating Kerberos authentication",
"default": false,
"description": "Specifies whether the generated Kerberos SPN is based on the canonical DNS name or the original name entered.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DisableAuthNegotiateCnameLookup"
}
],
"property_order": 360
},
"EnableAuthNegotiatePort": {
"type": "boolean",
"title": "Include non-standard port in Kerberos SPN",
"default": false,
"description": "Specifies whether the generated Kerberos SPN should include a non-standard port.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=EnableAuthNegotiatePort"
}
],
"property_order": 365
},
"NtlmV2Enabled": {
"type": "boolean",
"title": "Enable NTLMv2 authentication",
"default": true,
"description": "Controls whether NTLMv2 is enabled.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NtlmV2Enabled"
}
],
"property_order": 370
},
"BrowserSwitcherEnabled": {
"type": "boolean",
"title": "Browser Switcher Enabled",
"default": false,
"description": "This policy controls whether to enable Legacy Browser Support. When this policy is set to true, Chrome will attempt to launch some URLs in an alternate browser.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserSwitcherEnabled"
}
],
"property_order": 375
},
"AlternativeBrowserParameters": {
"type": "array",
"items": {
"type": "string"
},
"title": "Alternative Browser Parameters",
"description": "This policy controls command-line parameters to launch to the alternative browser.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AlternativeBrowserParameters"
}
],
"property_order": 380
},
"AlternativeBrowserPath": {
"type": "string",
"title": "Alternative Browser Path",
"description": "This policy controls which command to use to open URLs in an alternative browser.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AlternativeBrowserPath"
}
],
"enum": [
"${safari}",
"${firefox}",
"${opera}",
"${ie}"
],
"property_order": 385
},
"BrowserSwitcherDelay": {
"type": "integer",
"title": "Browser Switcher Delay",
"description": "This policy controls how long to wait before launching an alternative browser, in milliseconds. When this policy is set to a number, Chrome shows a message for that many milliseconds, and then opens the alternative browser.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserSwitcherDelay"
}
],
"property_order": 390
},
"BrowserSwitcherKeepLastChromeTab": {
"type": "boolean",
"title": "Keep Chrome open when the last tab switches to another browser",
"default": true,
"description": "This policy controls whether to close Chrome completely when the last tab would switch to another browser.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserSwitcherKeepLastChromeTab"
}
],
"property_order": 395
},
"BrowserSwitcherUrlList": {
"type": "array",
"items": {
"type": "string",
"pattern": "^https?://.*$"
},
"title": "Browser Switcher URL List",
"description": "This policy controls the list of websites to open in an alternative browser.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserSwitcherUrlGreylist"
}
],
"property_order": 400
},
"BrowserSwitcherUrlGreylist": {
"type": "array",
"items": {
"type": "string",
"pattern": "^https?://.*$"
},
"title": "Browser Switcher URL Greylist",
"description": "This policy controls the list of websites that will never cause a browser switch.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserSwitcherUrlGreylist"
}
],
"property_order": 405
},
"BrowserSwitcherExternalGreylistUrl": {
"type": "string",
"title": "Browser Switcher External Greylist URL",
"description": "This policy is a URL, that points to an XML file in the same format as Internet Explorer's SiteList policy. This loads rules from an XML file, without sharing those rules with Internet Explorer.",
"pattern": "^https?://.*.xml$",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserSwitcherExternalGreylistUrl"
}
],
"property_order": 410
},
"BrowserSwitcherExternalSitelistUrl": {
"type": "string",
"title": "Browser Switcher External Sitelist URL",
"description": "This policy is a URL, that points to an XML file in the same format as Internet Explorer's SiteList policy. This loads rules from an XML file, without sharing those rules with Internet Explorer.",
"pattern": "^https?://.*.xml$",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserSwitcherExternalSitelistUrl"
}
],
"property_order": 415
},
"AbusiveExperienceInterventionEnforce": {
"type": "boolean",
"title": "Abusive Experience Intervention Enforce",
"default": true,
"description": "Allows you to set whether sites with abusive experiences should be prevented from opening new windows or tabs.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AbusiveExperienceInterventionEnforce"
}
],
"property_order": 420
},
"AccessibilityImageLabelsEnabled": {
"type": "boolean",
"title": "Allow accessibility descriptions for Google images",
"description": "Enable Get Image Descriptions from Google. Enables visually-impaired screen reader users to get descriptions of unlabeled images on the web.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AccessibilityImageLabelsEnabled"
}
],
"property_order": 425
},
"AdsSettingForIntrusiveAdsSites": {
"type": "integer",
"title": "Ads setting for sites with intrusive ads",
"description": "Allows you to set whether ads should be blocked on sites with intrusive ads.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AdsSettingForIntrusiveAdsSites"
}
],
"enum": [
1,
2
],
"options": {
"enum_titles": [
"Allow ads on all sites",
"Do not allow ads on sites with intrusive ads"
]
},
"property_order": 430
},
"AdvancedProtectionAllowed": {
"type": "boolean",
"title": "Enable Advanced Protection",
"default": true,
"description": "Enable additional protections for users enrolled in the Advanced Protection program.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AdvancedProtectionAllowed"
}
],
"property_order": 435
},
"AdvancedProtectionDeepScanningEnabled": {
"type": "boolean",
"title": "Advanced Protection Deep Scanning",
"default": true,
"description": "This policy controls whether users enrolled in the Advanced Protection program are allowed to send their downloads to Google for malware scanning. If set to True or not set, enrolled users will be be prompted to send their files to Google for deep scanning. If the user selects 'Scan', their download will be sent to Google. If set to False, users will not be prompted and their downloads will not be sent to Google.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AdvancedProtectionDeepScanningEnabled"
}
],
"property_order": 440
},
"AllowDeletingBrowserHistory": {
"type": "boolean",
"title": "Enable deleting browser and download history",
"default": true,
"description": "Enables deleting browser history and download history in Google Chrome and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AllowDeletingBrowserHistory"
}
],
"property_order": 445
},
"AllowDinosaurEasterEgg": {
"type": "boolean",
"title": "Allow Dinosaur Easter Egg Game",
"description": "Allow users to play dinosaur easter egg game when device is offline.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AllowDinosaurEasterEgg"
}
],
"property_order": 450
},
"AllowFileSelectionDialogs": {
"type": "boolean",
"title": "Allow invocation of file selection dialogs",
"default": true,
"description": "Allows access to local files on the machine by allowing Google Chrome to display file selection dialogs.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AllowFileSelectionDialogs"
}
],
"property_order": 455
},
"AllowOutdatedPlugins": {
"type": "boolean",
"title": "Allow running plugins that are outdated",
"description": "If you enable this setting, outdated plugins are used as normal plugins.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AllowOutdatedPlugins"
}
],
"property_order": 460
},
"AllowPopupsDuringPageUnload": {
"type": "boolean",
"title": "Allow a page to show popups during its unloading",
"default": false,
"description": "This policy allows an admin to specify that a page may show popups during its unloading.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AllowPopupsDuringPageUnload"
}
],
"property_order": 465
},
"AllowSyncXHRInPageDismissal": {
"type": "boolean",
"title": "Allows a page to perform synchronous XHR requests during page dismissal.",
"default": false,
"description": "This policy allows an admin to specify that a page may send synchronous XHR requests during page dismissal.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AllowSyncXHRInPageDismissal"
}
],
"property_order": 470
},
"AllowedDomainsForApps": {
"type": "string",
"title": "Define domains allowed to access G Suite",
"description": "Enables Google Chrome's restricted log in feature in G Suite and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AllowedDomainsForApps"
}
],
"property_order": 475
},
"AlternateErrorPagesEnabled": {
"type": "boolean",
"title": "Enable alternate error pages",
"description": "Enables the use of alternate error pages that are built into Google Chrome (such as 'page not found') and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AlternateErrorPagesEnabled"
}
],
"property_order": 480
},
"AlwaysOpenPdfExternally": {
"type": "boolean",
"title": "Always Open PDF files externally",
"default": false,
"description": "Disables the internal PDF viewer in Google Chrome. Instead it treats it as download and allows the user to open PDF files with the default application.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AlwaysOpenPdfExternally"
}
],
"property_order": 485
},
"AmbientAuthenticationInPrivateModesEnabled": {
"type": "integer",
"title": "Ambient Authentication",
"description": "Configuring this policy will allow/disallow ambient authenticaiton for Incognito and Guest profiles in Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AmbientAuthenticationInPrivateModesEnabled"
}
],
"enum": [
0,
1,
2,
3
],
"options": {
"enum_titles": [
"Enable in regular sessions only",
"Enable in incognito and regular sessions",
"Enable in guest and regular sessions",
"Enable in regular, incognito and guest sessions"
]
},
"property_order": 490
},
"AppCacheForceEnabled": {
"type": "boolean",
"title": "Force Enable App Cache",
"description": "Allows the AppCache feature to be re-enabled even if it is off by default.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AppCacheForceEnabled"
}
],
"property_order": 495
},
"AudioCaptureAllowed": {
"type": "boolean",
"title": "Allow or deny audio capture",
"default": true,
"description": "If enabled or not configured (default), the user will be prompted for audio capture access except for URLs configured in the AudioCaptureAllowedUrls list which will be granted access without prompting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AudioCaptureAllowed"
}
],
"property_order": 500
},
"AudioSandboxEnabled": {
"type": "boolean",
"title": "Enable the audio sandbox",
"description": "Allow the audio sandbox to run. If this policy is enabled, the audio process will run sandboxed. If this policy is disabled, the audio process will run unsandboxed and the WebRTC audio-processing module will run in the renderer process. This leaves users open to security risks related to running the audio subsystem unsandboxed.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AudioSandboxEnabled"
}
],
"property_order": 505
},
"AudioCaptureAllowedUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "URLs that will be granted access to audio capture devices without prompt",
"description": "Patterns in this list will be matched against the security\norigin of the requesting URL. If a match is found, access to audio\ncapture devices will be granted without prompt.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AudioCaptureAllowedUrls"
}
],
"property_order": 510
},
"AutoFillEnabled": {
"type": "boolean",
"title": "Enable AutoFill",
"default": true,
"description": "Enable AutoFill. This policy is deprecated in M70, please use AutofillAddressEnabled and AutofillCreditCardEnabled instead.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AutoFillEnabled"
}
],
"property_order": 515
},
"AutoLaunchProtocolsFromOrigins": {
"type": "array",
"items": {
"type": "object",
"properties": {
"allowed_origins": {
"type": "array",
"items": {},
"title": "Allowed Origins",
"description": "A list of allowed origin patterns for the specified protocol."
},
"protocol": {
"type": "string",
"title": "Protocol",
"pattern": "^((?!\\:).)*$"
}
}
},
"title": "Allow protocols to auto launch external applications",
"description": "Define a list of protocols that can launch an external application from listed origins without prompting the user. If this policy is set, a protocol will only be permitted to launch an external application without prompting by policy if the protocol is listed, and the origin of the site trying to launch the protocol matches one of the origin patterns in that protocol's allowed_origins list.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AutoLaunchProtocolsFromOrigins"
}
],
"property_order": 520
},
"AutoOpenAllowedForURLs": {
"type": "array",
"items": {
"type": "string",
"title": "URL"
},
"title": "Allowed URLs for auto open filetypes",
"description": "URLs where AutoOpenFileTypes can apply. List of URLs specifying which urls AutoOpenFileTypes will apply to. This policy has no impact on automatically open values set by users.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AutoOpenAllowedForURLs"
}
],
"property_order": 525
},
"AutoOpenFileTypes": {
"type": "array",
"items": {
"type": "string",
"title": "File Extension",
"pattern": "^((?!\\.).)*$"
},
"title": "Allow file extensions to auto open",
"description": "List of file types that should be automatically opened on download.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AutoOpenFileTypes"
}
],
"property_order": 530
},
"AutofillAddressEnabled": {
"type": "boolean",
"title": "Enable AutoFill for addresses",
"default": true,
"description": "Enables Google Chrome's AutoFill feature and allows users to auto complete address information in web forms using previously stored information.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AutofillAddressEnabled"
}
],
"property_order": 535
},
"AutofillCreditCardEnabled": {
"type": "boolean",
"title": "Enable AutoFill for credit cards",
"default": true,
"description": "Enables Google Chrome's AutoFill feature and allows users to auto complete credit card information in web forms using previously stored information.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=AutofillCreditCardEnabled"
}
],
"property_order": 540
},
"BookmarkBarEnabled": {
"type": "boolean",
"title": "Enable Bookmark Bar",
"description": "If you enable this setting, Google Chrome will show a bookmark bar.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BookmarkBarEnabled"
}
],
"property_order": 545
},
"BrowserAddPersonEnabled": {
"type": "boolean",
"title": "Enable add person in user manager",
"default": true,
"description": "If this policy is set to true or not configured, Google Chrome will allow Add Person from the user manager.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserAddPersonEnabled"
}
],
"property_order": 550
},
"BrowserGuestModeEnabled": {
"type": "boolean",
"title": "Enable guest mode in browser",
"default": true,
"description": "If this policy is set to true or not configured, Google Chrome will enable guest logins. Guest logins are Google Chrome profiles where all windows are in incognito mode.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserGuestModeEnabled"
}
],
"property_order": 555
},
"BrowserGuestModeEnforced": {
"type": "boolean",
"title": "Force guest mode in browser",
"default": false,
"description": "If this policy is set to enabled, Google Chrome will enforce guest sessions and prevents profile logins. Guest logins are Google Chrome profiles where all windows are in incognito mode.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserGuestModeEnforced"
}
],
"property_order": 560
},
"BrowserNetworkTimeQueriesEnabled": {
"type": "boolean",
"title": "Allow queries to a Google time service",
"default": true,
"description": "Setting this policy to false stops Google Chrome from occasionally sending queries to a Google server to retrieve an accurate timestamp. These queries will be enabled if this policy is set to True or is not set.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserNetworkTimeQueriesEnabled"
}
],
"property_order": 565
},
"BrowserSignin": {
"type": "integer",
"title": "Browser Signin",
"description": "This policy controls the sign-in behavior of the browser. It allows you to specify if the user can sign in to Google Chrome with their account and use account related services like Chrome sync.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BrowserSignin"
}
],
"enum": [
0,
1,
2
],
"options": {
"enum_titles": [
"Disable browser sign-in",
"Enable browser sign-in",
"Force users to sign-in to use the browser"
]
},
"property_order": 570
},
"BuiltInDnsClientEnabled": {
"type": "boolean",
"title": "Use built-in DNS client",
"description": "Controls whether the built-in DNS client is used in Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BuiltInDnsClientEnabled"
}
],
"property_order": 575
},
"BuiltinCertificateVerifierEnabled": {
"type": "boolean",
"title": "Use built-in certificate verifier",
"description": "Determines whether the built-in certificate verifier will be used to verify server certificates. When this setting is enabled, Google Chrome will perform verification of server certificates using the built-in certificate verifier. When this setting is disabled, Google Chrome will perform verification of server certificates using the legacy certificate verifier provided by the platform. When this setting is not set, the built-in or the legacy certificate verifier may be used.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=BuiltinCertificateVerifierEnabled"
}
],
"property_order": 580
},
"CertificateTransparencyEnforcementDisabledForCas": {
"type": "array",
"items": {
"type": "string"
},
"title": "Disable Certificate Transparency enforcement for a list of subjectPublicKeyInfo hashes",
"description": "Disables enforcing Certificate Transparency requirements for a list of subjectPublicKeyInfo hashes.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CertificateTransparencyEnforcementDisabledForCas"
}
],
"property_order": 585
},
"CertificateTransparencyEnforcementDisabledForLegacyCas": {
"type": "array",
"items": {
"type": "string"
},
"title": "Disable Certificate Transparency enforcement for a list of Legacy Certificate Authorities",
"description": "Disables enforcing Certificate Transparency requirements for a list of Legacy Certificate Authorities.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CertificateTransparencyEnforcementDisabledForLegacyCas"
}
],
"property_order": 590
},
"CertificateTransparencyEnforcementDisabledForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Disable Certificate Transparency enforcement for a list of URLs",
"description": "Disables enforcing Certificate Transparency requirements to the listed URLs. A URL pattern is formatted according to https://www.chromium.org/administrators/url-blacklist-filter-format.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CertificateTransparencyEnforcementDisabledForUrls"
}
],
"property_order": 595
},
"ChromeVariations": {
"type": "integer",
"title": "Google Chrome Variations",
"default": 0,
"description": "Determine the availability of variations.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ChromeVariations"
}
],
"enum": [
0,
1,
2
],
"options": {
"enum_titles": [
"Enable all variations",
"Enable variations concerning critical fixes only",
"Disable all variations"
]
},
"property_order": 600
},
"ClickToCallEnabled": {
"type": "boolean",
"title": "Enable Click to Call",
"default": true,
"description": "Enable the Click to Call Feature.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ClickToCallEnabled"
}
],
"property_order": 605
},
"CloudManagementEnrollmentToken": {
"type": "string",
"title": "Cloud Management Enrollment Token",
"description": "If this policy is set, Google Chrome will try to register itself and apply associated cloud policy for all profiles.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CloudManagementEnrollmentToken"
}
],
"property_order": 610
},
"CloudManagementEnrollmentMandatory": {
"type": "boolean",
"title": "Make cloud managment enrollment mandatory",
"default": false,
"description": "If this policy is set to True, cloud management enrollment is mandatory and blocks Chrome launch process if failed.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CloudManagementEnrollmentMandatory"
}
],
"property_order": 615
},
"CloudPolicyOverridesPlatformPolicy": {
"type": "boolean",
"title": "Cloud Policy Overrides Platform Policy",
"default": false,
"description": "If the policy is set to true, cloud policy takes precedence if it conflicts with platform policy. If the policy is set to false or not configured, platform policy takes precedence if it conflicts with cloud policy.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CloudPolicyOverridesPlatformPolicy"
}
],
"property_order": 620
},
"CommandLineFlagSecurityWarningsEnabled": {
"type": "boolean",
"title": "Command Line Flag Security Warnings Enabled",
"default": true,
"description": "If disabled, prevents security warnings from appearing when Chrome is launched with some potentially dangerous command-line flags.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CommandLineFlagSecurityWarningsEnabled"
}
],
"property_order": 625
},
"ComponentUpdatesEnabled": {
"type": "boolean",
"title": "Enable component updates in Google Chrome",
"default": true,
"description": "Enables component updates for all components in Google Chrome when not set or set to True.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ComponentUpdatesEnabled"
}
],
"property_order": 630
},
"CorsLegacyModeEnabled": {
"type": "boolean",
"title": "Enable Cross-Origin Resource Sharing legacy mode",
"default": true,
"description": "Use the legacy CORS implementation rather than new CORS.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CorsLegacyModeEnabled"
}
],
"property_order": 635
},
"CorsMitigationList": {
"type": "array",
"items": {
"type": "string"
},
"title": "Cross-Origin Resource Sharing mitigation list",
"description": "Enable CORS check mitigations in the new CORS implementation, allowing Extensions to keep compatible behavior, and allowing Google Chrome to send specified headers without CORS checks.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CorsMitigationList"
}
],
"property_order": 640
},
"DNSInterceptionChecksEnabled": {
"type": "boolean",
"title": "DNS Interception Checks",
"default": true,
"description": "This policy configures a local switch that can be used to disable DNS interception checks. The checks attempt to discover whether the browser is behind a proxy that redirects unknown host names.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DNSInterceptionChecksEnabled"
}
],
"property_order": 645
},
"DefaultBrowserSettingEnabled": {
"type": "boolean",
"title": "Set Google Chrome as Default Browser",
"description": "Configures the default browser checks in Google Chrome and prevents users from changing them.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultBrowserSettingEnabled"
}
],
"property_order": 650
},
"DefaultDownloadDirectory": {
"type": "string",
"title": "Set default download directory",
"description": "Configures the default directory that Google Chrome will use for downloading files. This policy is not mandatory, so the user will be able to change the directory.\n\nSee https://www.chromium.org/administrators/policy-list-3/user-data-directory-variables for a list of variables that can be used.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultDownloadDirectory"
}
],
"property_order": 655
},
"DefaultSearchProviderContextMenuAccessAllowed": {
"type": "boolean",
"title": "Enable default search provider on context menu",
"default": true,
"description": "Allow default search provider context menu search access.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultSearchProviderContextMenuAccessAllowed"
}
],
"property_order": 660
},
"DeveloperToolsAvailability": {
"type": "integer",
"title": "Control where Developer Tools can be used",
"description": "Allows you to control where Developer Tools can be used.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DeveloperToolsAvailability"
}
],
"enum": [
0,
1,
2
],
"options": {
"enum_titles": [
"Disallow usage of the Developer Tools on extensions installed by enterprise policy, allow usage of the Developer Tools in other contexts",
"Allow usage of the Developer Tools",
"Disallow usage of the Developer Tools"
]
},
"property_order": 665
},
"Disable3DAPIs": {
"type": "boolean",
"title": "Disable support for 3D graphics APIs",
"default": false,
"description": "Enabling this setting prevents web pages from accessing the graphics processing unit (GPU). Specifically, web pages can not access the WebGL API and plugins can not use the Pepper 3D API.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=Disable3DAPIs"
}
],
"property_order": 670
},
"DisableSafeBrowsingProceedAnyway": {
"type": "boolean",
"title": "Disable proceeding from the Safe Browsing warning page",
"default": false,
"description": "The Safe Browsing service shows a warning page when users navigate to sites that are flagged as potentially malicious. Enabling this setting prevents users from proceeding anyway from the warning page to the malicious site.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DisableSafeBrowsingProceedAnyway"
}
],
"property_order": 675
},
"DisableScreenshots": {
"type": "boolean",
"title": "Disable taking screenshots",
"default": false,
"description": "If enabled, screenshots cannot be taken using keyboard shortcuts or extension APIs.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DisableScreenshots"
}
],
"property_order": 680
},
"DisabledPlugins": {
"type": "array",
"items": {
"type": "string"
},
"title": "Disabled Plugins",
"description": "This policy is deprecated. Please use the DefaultPluginsSetting to control the avalability of the Flash plugin and AlwaysOpenPdfExternally to control whether the integrated PDF viewer should be used for opening PDF files.\n\nSpecifies a list of plugins that are disabled in Google Chrome and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DisabledPlugins"
}
],
"property_order": 685
},
"DisabledPluginsExceptions": {
"type": "array",
"items": {
"type": "string"
},
"title": "Disabled Plugins Exceptions",
"description": "This policy is deprecated. Please use the DefaultPluginsSetting to control the avalability of the Flash plugin and AlwaysOpenPdfExternally to control whether the integrated PDF viewer should be used for opening PDF files.\n\nSpecifies a list of plugins that user can enable or disable in Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DisabledPluginsExceptions"
}
],
"property_order": 690
},
"DisabledSchemes": {
"type": "array",
"items": {
"type": "string"
},
"title": "Disabled URL Protocol Schemes",
"description": "This policy is deprecated, please use URLBlocklist instead.\n\nDisables the listed protocol schemes in Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DisabledSchemes"
}
],
"property_order": 695
},
"DiskCacheDir": {
"type": "string",
"title": "Set disk cache directory",
"description": "Configures the directory that Google Chrome will use for storing cached files on the disk. See https://www.chromium.org/administrators/policy-list-3/user-data-directory-variables for a list of variables that can be used. To avoid data loss or other unexpected errors this policy should not be set to a volume's root directory or to a directory used for other purposes, because Google Chrome manages its contents",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DiskCacheDir"
}
],
"property_order": 700
},
"DiskCacheSize": {
"type": "integer",
"title": "Set disk cache size",
"description": "Configures the cache size that Google Chrome will use for storing cached files on the disk. The value specified in this policy is not a hard boundary but rather a suggestion to the caching system, any value below a few megabytes is too small and will be rounded up to a sane minimum. If the value of this policy is 0, the default cache size will be used but the user will not be able to change it.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DiskCacheSize"
}
],
"property_order": 705
},
"DnsOverHttpsMode": {
"type": "string",
"title": "DNS-over-HTTPS mode",
"description": "Controls the mode of DNS-over-HTTPS",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DnsOverHttpsMode"
}
],
"enum": [
"off",
"automatic",
"secure"
],
"options": {
"enum_titles": [
"Disable DNS-over-HTTPS",
"Enable DNS-over-HTTPS with insecure fallback",
"Enable DNS-over-HTTPS without insecure fallback"
]
},
"property_order": 710
},
"DnsOverHttpsTemplates": {
"type": "string",
"title": "DNS-over-HTTPS mode",
"description": "Specify URI template of desired DNS-over-HTTPS resolver. To specify multiple DNS-over-HTTPS resolvers, separate the corresponding URI templates with spaces.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DnsOverHttpsTemplates"
}
],
"property_order": 715
},
"DownloadDirectory": {
"type": "string",
"title": "Set download directory",
"description": "Configures the directory that Google Chrome will use for downloading files. If you set this policy, Google Chrome will use the provided directory regardless whether the user has specified one or enabled the flag to be prompted for download location every time. If this policy is left not set the default download directory will be used and the user will be able to change it.\n\nSee https://www.chromium.org/administrators/policy-list-3/user-data-directory-variables for a list of variables that can be used.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DownloadDirectory"
}
],
"property_order": 720
},
"DownloadRestrictions": {
"type": "integer",
"title": "Download restrictions",
"description": "Configures the type of downloads that Google Chrome will completely block, without letting users override the security decision.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DownloadRestrictions"
}
],
"enum": [
0,
1,
2,
3
],
"options": {
"enum_titles": [
"No special restrictions",
"Block dangerous downloads",
"Block potentially dangerous downloads",
"Block all downloads"
]
},
"property_order": 725
},
"EditBookmarksEnabled": {
"type": "boolean",
"title": "Enable or disable bookmark editing",
"default": true,
"description": "If you enable this setting, bookmarks can be added, removed or modified. This is the default also when this policy is not set.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=EditBookmarksEnabled"
}
],
"property_order": 730
},
"EnableDeprecatedWebPlatformFeatures": {
"type": "array",
"items": {
"type": "string"
},
"title": "Enable deprecated web platform features for a limited time",
"description": "ExampleDeprecatedFeature_EffectiveUntil20080902 - Enable ExampleDeprecatedFeature API through 2008/09/02\nSpecify a list of deprecated web platform features to re-enable temporarily.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=EnableDeprecatedWebPlatformFeatures"
}
],
"property_order": 735
},
"EnableExperimentalPolicies": {
"type": "array",
"items": {
"type": "string",
"title": "Preference Key Name"
},
"title": "Enable experimental policies",
"description": "Allows Google Chrome to load experimental policies.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=EnableExperimentalPolicies"
}
],
"property_order": 740
},
"EnableOnlineRevocationChecks": {
"type": "boolean",
"title": "Whether online OCSP/CRL checks are performed",
"default": false,
"description": "In light of the fact that soft-fail, online revocation checks provide no effective security benefit, they are disabled by default in Google Chrome version 19 and later. By setting this policy to true, the previous behavior is restored and online OCSP/CRL checks will be performed.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=EnableOnlineRevocationChecks"
}
],
"property_order": 745
},
"EnabledPlugins": {
"type": "array",
"items": {
"type": "string"
},
"title": "Enabled Plugins",
"description": "This policy is deprecated. Please use the DefaultPluginsSetting to control the avalability of the Flash plugin and AlwaysOpenPdfExternally to control whether the integrated PDF viewer should be used for opening PDF files.\n\nSpecifies a list of plugins that are enabled in Google Chrome and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=EnabledPlugins"
}
],
"property_order": 750
},
"EnterpriseHardwarePlatformAPIEnabled": {
"type": "boolean",
"title": "Enable Managed Extensions to use the Enterprise Hardware API",
"default": false,
"description": "When this policy is set to enabled, extensions installed by enterprise policy are allowed to use the Enterprise Hardware Platform API.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=EnterpriseHardwarePlatformAPIEnabled"
}
],
"property_order": 755
},
"EnterpriseRealTimeUrlCheckMode": {
"type": "integer",
"title": "Check Safe Browsing status of URLs in real time",
"description": "This policy controls checking URLs in real time to identify unsafe URLs. If this policy is left not set or set to ‘Disabled', the consumer Safe Browsing checks will be applied. If this policy is set to ‘Enabled', URLs will be sent to be scanned in real time under enterprise ToS. It will result in Chrome sending URLs to Google Cloud or third parties of your choosing to check them in real time. The consumer version of Safe Browsing real time lookup will be switched off.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=EnterpriseRealTimeUrlCheckMode"
}
],
"enum": [
0,
1
],
"options": {
"enum_titles": [
"Disabled",
"Enabled"
]
},
"property_order": 760
},
"ExternalProtocolDialogShowAlwaysOpenCheckbox": {
"type": "boolean",
"title": "Display \"Always open\" checkbox in external protocol dialog",
"default": true,
"description": "Show an \"Always open\" checkbox in external protocol dialog.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ExternalProtocolDialogShowAlwaysOpenCheckbox"
}
],
"property_order": 765
},
"ForceBrowserSignin": {
"type": "boolean",
"title": "Enable force sign in for Google Chrome",
"default": false,
"description": "If this policy is set to true, user has to sign in to Google Chrome with their profile before using the browser. And the default value of BrowserGuestModeEnabled will be set to false. Note that existing unsigned profiles will be locked and inaccessible after enabling this policy. For more information, see help center article. This policy is deprecated, consider using BrowserSignin instead.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ForceBrowserSignin"
}
],
"property_order": 770
},
"ForceEphemeralProfiles": {
"type": "boolean",
"title": "Ephemeral profile",
"default": false,
"description": "If set to enabled this policy forces the profile to be switched to ephemeral mode. If this policy is specified as an OS policy (e.g. GPO on Windows) it will apply to every profile on the system; if the policy is set as a Cloud policy it will apply only to a profile signed in with a managed account.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ForceEphemeralProfiles"
}
],
"property_order": 775
},
"ForceGoogleSafeSearch": {
"type": "boolean",
"title": "Force Google SafeSearch",
"default": false,
"description": "Forces queries in Google Web Search to be done with SafeSearch set to active and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ForceGoogleSafeSearch"
}
],
"property_order": 780
},
"ForceSafeSearch": {
"type": "boolean",
"title": "Force SafeSearch",
"default": false,
"description": "This policy is deprecated, please use ForceGoogleSafeSearch and ForceYouTubeRestrict instead. This policy is ignored if either the ForceGoogleSafeSearch, the ForceYouTubeRestrict or the (deprecated) ForceYouTubeSafetyMode policies are set.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ForceSafeSearch"
}
],
"property_order": 785
},
"ForceLegacyDefaultReferrerPolicy": {
"type": "boolean",
"title": "Force Legacy Default Referrer",
"default": false,
"description": "This enterprise policy is for short-term adaptation and will be removed in M82.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ForceLegacyDefaultReferrerPolicy"
}
],
"property_order": 790
},
"GloballyScopeHTTPAuthCacheEnabled": {
"type": "boolean",
"title": "Enable globally scoped HTTP auth cache",
"default": false,
"description": "This policy configures a single global per profile cache with HTTP server authentication credentials.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=GloballyScopeHTTPAuthCacheEnabled"
}
],
"property_order": 795
},
"HSTSPolicyBypassList": {
"type": "array",
"items": {
"type": "string",
"title": "Hostname"
},
"title": "HSTS Policy Bypass List",
"description": "List of names that will bypass the HSTS policy check. Hostnames specified in this list will be exempt from the HSTS policy check that could potentially upgrade requests from http to https.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=HSTSPolicyBypassList"
}
],
"property_order": 800
},
"ForceYouTubeRestrict": {
"type": "integer",
"title": "Force minimum YouTube Restricted Mode",
"description": "Enforces a minimum Restricted Mode on YouTube and prevents users from picking a less restricted mode.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ForceYouTubeRestrict"
}
],
"enum": [
0,
1,
2
],
"options": {
"enum_titles": [
"Do not enforce Restricted Mode on YouTube",
"Enforce at least Moderate Restricted Mode on YouTube",
"Enforce Strict Restricted Mode for YouTube"
]
},
"property_order": 805
},
"ForceYouTubeSafetyMode": {
"type": "boolean",
"title": "Force YouTube Safety Mode",
"default": false,
"description": "This policy is deprecated. Consider using ForceYouTubeRestrict, which overrides this policy and allows more fine-grained tuning.\n\nForces YouTube Moderate Restricted Mode and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ForceYouTubeSafetyMode"
}
],
"property_order": 810
},
"HardwareAccelerationModeEnabled": {
"type": "boolean",
"title": "Use hardware acceleration when available",
"default": true,
"description": "If this policy is set to true or left unset, hardware acceleration will be enabled unless a certain GPU feature is blacklisted.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=HardwareAccelerationModeEnabled"
}
],
"property_order": 815
},
"HideWebStoreIcon": {
"type": "boolean",
"title": "Hide the web store from the New Tab Page and app launcher",
"default": false,
"description": "Hide the Chrome Web Store app and footer link from the New Tab Page and Google Chrome OS app launcher.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=HideWebStoreIcon"
}
],
"property_order": 820
},
"Http09OnNonDefaultPortsEnabled": {
"type": "boolean",
"title": "Enable HTTP/0.9 support on non-default ports",
"default": false,
"description": "This policy enables HTTP/0.9 on ports other than 80 for HTTP and 443 for HTTPS.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=Http09OnNonDefaultPortsEnabled"
}
],
"property_order": 825
},
"ImportAutofillFormData": {
"type": "boolean",
"title": "Import autofill form data from default browser on first run",
"description": "This policy forces the autofill form data to be imported from the previous default browser if enabled. If enabled, this policy also affects the import dialog.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ImportAutofillFormData"
}
],
"property_order": 830
},
"ImportBookmarks": {
"type": "boolean",
"title": "Import bookmarks from default browser on first run",
"default": true,
"description": "This policy forces bookmarks to be imported from the current default browser if enabled. If enabled, this policy also affects the import dialog.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ImportBookmarks"
}
],
"property_order": 835
},
"ImportHistory": {
"type": "boolean",
"title": "Import browsing history from default browser on first run",
"description": "This policy forces the browsing history to be imported from the current default browser if enabled. If enabled, this policy also affects the import dialog.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ImportHistory"
}
],
"property_order": 840
},
"ImportHomepage": {
"type": "boolean",
"title": "Import of homepage from default browser on first run",
"description": "This policy forces the home page to be imported from the current default browser if enabled.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ImportHomepage"
}
],
"property_order": 845
},
"ImportSavedPasswords": {
"type": "boolean",
"title": "Import saved passwords from default browser on first run",
"description": "This policy forces the saved passwords to be imported from the previous default browser if enabled. If enabled, this policy also affects the import dialog.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ImportSavedPasswords"
}
],
"property_order": 850
},
"ImportSearchEngine": {
"type": "boolean",
"title": "Import search engines from default browser on first run",
"description": "This policy forces search engines to be imported from the current default browser if enabled. If enabled, this policy also affects the import dialog.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ImportSearchEngine"
}
],
"property_order": 855
},
"IncognitoEnabled": {
"type": "boolean",
"title": "Enable Incognito",
"default": true,
"description": "This policy is deprecated. Please, use IncognitoModeAvailability instead. Enables Incognito mode in Google Chrome.\n\nIf this setting is enabled or not configured, users can open web pages in incognito mode.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ImportSearchEngine"
}
],
"property_order": 860
},
"IncognitoModeAvailability": {
"type": "integer",
"title": "Incognito mode availability",
"description": "Specifies whether the user may open pages in Incognito mode in Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=IncognitoModeAvailability"
}
],
"enum": [
0,
1,
2
],
"options": {
"enum_titles": [
"Incognito mode available",
"Incognito mode disabled",
"Incognito mode forced"
]
},
"property_order": 865
},
"IntensiveWakeUpThrottlingEnabled": {
"type": "boolean",
"title": "Enable Intensive Wake Up Throttling",
"description": "When enabled, the IntensiveWakeUpThrottling feature causes JavaScript timers in background tabs to be aggressively throttled and coalesced, running no more than once per minute after a page has been backgrounded for 5 minutes or more.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=IntensiveWakeUpThrottlingEnabled"
}
],
"property_order": 870
},
"IsolateOrigins": {
"type": "string",
"title": "Enable Site Isolation for specified origins",
"description": "If the policy is enabled, each of the named origins in a comma-separated list will run in its own process. This will also isolate origins named by subdomains; e.g. specifying https://example.com/ will also cause https://foo.example.com/ to be isolated as part of the https://example.com/ site. If the policy is disabled, no explicit Site Isolation will happen and field trials of IsolateOrigins and SitePerProcess will be disabled. Users will still be able to enable IsolateOrigins manually. If the policy is not configured, the user will be able to change this setting. On Google Chrome OS, it is recommended to also set the DeviceLoginScreenIsolateOrigins device policy to the same value. If the values specified by the two policies don't match, a delay may be incurred when entering a user session while the value specified by user policy is being applied.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=IsolateOrigins"
}
],
"property_order": 875
},
"JavascriptEnabled": {
"type": "boolean",
"title": "Javascript Enabled",
"default": true,
"description": "This policy is deprecated, please use DefaultJavaScriptSetting instead.\n\nCan be used to disabled JavaScript in Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=JavascriptEnabled"
}
],
"property_order": 880
},
"LocalDiscoveryEnabled": {
"type": "boolean",
"title": "Enable chrome://devices",
"description": "This policy controls access to controllable features in the local discovery UI (chrome://devices) which shows discoverable devices near the user as well as cloud devices registered to them. On all operating systems except for Google Chrome OS, the local discovery UI also allows users to add classic printers connected to their computers to Google Cloud Print.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=LocalDiscoveryEnabled"
}
],
"property_order": 885
},
"LookalikeWarningAllowlistDomains": {
"type": "array",
"items": {
"type": "string",
"title": "Domain"
},
"title": "Suppress lookalike domain warnings on domains",
"description": "This policy prevents the display of lookalike URL warnings on the sites listed. These warnings are typically shown on sites that Google Chrome believes might be trying to spoof another site the user is familiar with. If the policy is enabled and set to one or more domains, no lookalike warnings pages will be shown when the user visits pages on that domain. If the policy is disabled, not set, or set to an empty list, warnings may appear on any site the user visits.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=LookalikeWarningAllowlistDomains"
}
],
"property_order": 890
},
"MachineLevelUserCloudPolicyEnrollmentToken": {
"type": "string",
"title": "The enrollment token of cloud policy on desktop",
"description": "The enrollment token of cloud policy on desktop. This policy is deprecated in M72. Please use CloudManagementEnrollmentToken instead.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=MachineLevelUserCloudPolicyEnrollmentToken"
}
],
"property_order": 895
},
"ManagedBookmarks": {
"type": "array",
"items": {
"type": "object",
"properties": {
"name": {
"type": "string",
"description": "Name of the bookmark."
},
"url": {
"type": "string",
"description": "URL for the bookmark."
}
}
},
"title": "Managed Bookmarks",
"description": "Configures a list of managed bookmarks.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ManagedBookmarks"
}
],
"property_order": 900
},
"MaxConnectionsPerProxy": {
"type": "integer",
"title": "Maximal number of concurrent connections to the proxy server",
"default": 32,
"description": "Specifies the maximal number of simultaneous connections to the proxy server.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=MaxConnectionsPerProxy"
}
],
"property_order": 905
},
"MaxInvalidationFetchDelay": {
"type": "integer",
"title": "Maximum fetch delay after a policy invalidation",
"default": 5000,
"description": "Specifies the maximum delay in milliseconds between receiving a policy invalidation and fetching the new policy from the device management service.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=MaxInvalidationFetchDelay"
}
],
"property_order": 910
},
"MediaRecommendationsEnabled": {
"type": "boolean",
"title": "Enable Media Recommendations",
"description": "By default the browser will show media recommendations that are personalized to the user. Setting this policy to Disabled will result in these recommendations being hidden from the user. Setting this policy to Enabled or leaving it unset will result in the media recommendations being shown to the user.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=MediaRecommendationsEnabled"
}
],
"property_order": 915
},
"MediaRouterCastAllowAllIPs": {
"type": "boolean",
"title": "Allow Google Cast to connect to Cast devices on all IP addresses.",
"description": "If this policy is set to true, Google Cast will connect to Cast devices on all IP addresses, not just RFC1918/RFC4913 private addresses.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=MediaRouterCastAllowAllIPs"
}
],
"property_order": 920
},
"MetricsReportingEnabled": {
"type": "boolean",
"title": "Enable reporting of usage and crash-related data",
"description": "Enables anonymous reporting of usage and crash-related data about Google Chrome to Google and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=MetricsReportingEnabled"
}
],
"property_order": 925
},
"NTPCardsVisible": {
"type": "boolean",
"title": "Show cards on the New Tab Page",
"description": "This policy controls the visibility of cards on the New Tab Page. Cards surface entry points to launch common user journeys based on the user's browsing behavior.\n\nIf the policy is set to Enabled, the New Tab Page will show cards if content is available.\n\nIf the policy is set to Disabled, the New Tab Page won't show cards.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NTPCardsVisible"
}
],
"property_order": 930
},
"NTPCustomBackgroundEnabled": {
"type": "boolean",
"title": "Allow New Tab page background customization",
"default": true,
"description": "Allow users to customize the background on the New Tab page",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NTPCustomBackgroundEnabled"
}
],
"property_order": 935
},
"NetworkPredictionOptions": {
"type": "integer",
"title": "Enable network prediction",
"description": "(Deprecated in 50, removed in 52. After 52, if value 1 is set, it will be treated as 0 - predict network actions on any network connection.)\nEnables network prediction in Google Chrome and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NetworkPredictionOptions"
}
],
"enum": [
0,
1,
2
],
"options": {
"enum_titles": [
"Predict network actions on any network connection",
"Predict network actions on any network that is not cellular.",
"Do not predict network actions on any network connection"
]
},
"property_order": 940
},
"OverrideSecurityRestrictionsOnInsecureOrigin": {
"type": "array",
"items": {
"type": "string"
},
"title": "Origins or hostname patterns to be treated as secure context.",
"description": "The policy specifies a list of origins (URLs) or hostname patterns (such as \"*.example.com\") to be treated as secure contexts. The intent is to allow organizations to set up a staging server for internal web development, so that their developers can test out features requiring secure contexts without having to deploy TLS on the staging server.\n\nSetting a list of URLs in this policy has the same effect as setting the command-line flag '--unsafely-treat-insecure-origin-as-secure' to a comma-separated list of the same URLs. If the policy is set, it will override the command-line flag.\n\nFor more information on secure contexts, see https://www.w3.org/TR/secure-contexts/",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=OverrideSecurityRestrictionsOnInsecureOrigin"
}
],
"property_order": 945
},
"PaymentMethodQueryEnabled": {
"type": "boolean",
"title": "Payment Method Query",
"default": true,
"description": "Allows you to set whether websites are allowed to check if the user has payment methods saved.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PaymentMethodQueryEnabled"
}
],
"property_order": 950
},
"PolicyAtomicGroupsEnabled": {
"type": "boolean",
"title": "Enable Policy Atomic Groups",
"default": true,
"description": "Enables the concept of policy atomic groups.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PolicyAtomicGroupsEnabled"
}
],
"property_order": 955
},
"PolicyDictionaryMultipleSourceMergeList": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow merging dictionary policies from different sources",
"description": "Allows the selected policies to be merged when they come from different sources, with the same scopes and level. Entered strings must match a Chrome policy / key name that uses a dictionary for its data type.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PolicyDictionaryMultipleSourceMergeList"
}
],
"property_order": 960
},
"PolicyListMultipleSourceMergeList": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow merging list policies from different sources",
"description": "Allows the selected policies to be merged when they come from different sources, with the same scopes and level. Entered strings must match a Chrome policy / key name that use an array (list) of strings for its data type.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PolicyListMultipleSourceMergeList"
}
],
"property_order": 965
},
"PolicyRefreshRate": {
"type": "integer",
"title": "Policy Refresh Rate",
"default": 10800000,
"description": "Refresh rate for user policy. Specifies the period in milliseconds at which the device management service is queried for user policy information. Setting this policy overrides the default value of 3 hours. Valid values for this policy are in the range from 1800000 (30 minutes) to 86400000 (1 day).",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PolicyRefreshRate"
}
],
"property_order": 970
},
"ProfilePickerOnStartupAvailability": {
"type": "integer",
"title": "Profile picker availabily on startup",
"description": "Specifies whether the profile picker is enabled, disabled or forced at the browser startup. By default the profile picker is not shown if the browser starts in guest or incognito mode, a profile directory and/or urls are specified by command line, an app is explicitly requested to open, the browser was launched by a native notification, there is only one profile available or the policy ForceBrowserSignin is set to true.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ProfilePickerOnStartupAvailability"
}
],
"enum": [
0,
1,
2
],
"options": {
"enum_titles": [
"Profile picker available at startup",
"Profile picker disabled at startup",
"Profile picker forced at startup"
]
},
"property_order": 975
},
"PromotionalTabsEnabled": {
"type": "boolean",
"title": "Enable showing full-tab promotional content",
"default": true,
"description": "Allows you to control the presentation of full-tab promotional and/or educational content in Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PromotionalTabsEnabled"
}
],
"property_order": 980
},
"PromptForDownloadLocation": {
"type": "boolean",
"title": "Ask where to save each file before downloading",
"description": "If the policy is enabled, the user will be asked where to save each file before downloading.\nIf the policy is disabled, downloads will start immediately, and the user will not be asked where to save the file.\nIf the policy is not configured, the user will be able to change this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PromptForDownloadLocation"
}
],
"property_order": 985
},
"ProxySettings": {
"type": "object",
"title": "Proxy Settings",
"description": "Configures the proxy settings for Google Chrome. These proxy settings will be available for ARC-apps too.\n\nIf you enable this setting, Google Chrome and ARC-apps ignore all proxy-related options specified from the command line.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ProxySettings"
}
],
"properties": {
"ProxySetting": {
"type": "array",
"items": {
"type": "string",
"enum": [
"direct",
"system",
"auto_detect",
"fixed_server",
"pac_script"
],
"options": {
"enum_titles": [
"Never use proxy (ignores other fields)",
"System (ignores other fields)",
"Auto Detect (ignores other fields)",
"Fixed (Uses ProxyServer & ProxyBypassList)",
"Pac Script (Uses ProxyPacUrl & ProxyBypassList)"
]
}
}
}
},
"property_order": 990
},
"QuicAllowed": {
"type": "boolean",
"title": "Allow QUIC protocol",
"default": true,
"description": "If this policy is set to true or not set usage of QUIC protocol in Google Chrome is allowed.\nIf this policy is set to false usage of QUIC protocol is disallowed.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=QuicAllowed"
}
],
"property_order": 995
},
"RelaunchNotification": {
"type": "integer",
"title": "Notify a user that a browser relaunch is recommended or required",
"description": "Notify users that Google Chrome must be relaunched to apply a pending update.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RelaunchNotification"
}
],
"enum": [
1,
2
],
"options": {
"enum_titles": [
"Show a recurring prompt to the user indicating that a relaunch is recommended",
"Show a recurring prompt to the user indicating that a relaunch is required"
]
},
"property_order": 1000
},
"RelaunchNotificationPeriod": {
"type": "integer",
"title": "Update time period",
"description": "Allows you to set the time period, in milliseconds, over which users are notified that Google Chrome must be relaunched or that a Google Chrome OS device must be restarted to apply a pending update.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RelaunchNotificationPeriod"
}
],
"property_order": 1005
},
"RestrictSigninToPattern": {
"type": "string",
"title": "Restrict which users are allowed to sign in to Google Chrome",
"description": "Contains a regular expression which is used to determine which users can sign in to Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RestrictSigninToPattern"
}
],
"property_order": 1010
},
"RunAllFlashInAllowMode": {
"type": "boolean",
"title": "Extend Flash content setting to all content",
"default": false,
"description": "If you enable this setting, all Flash content embedded on websites that have been set to allow Flash in content settings -- either by the user or by enterprise policy -- will be run, including content from other origins or small content.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RunAllFlashInAllowMode"
}
],
"property_order": 1015
},
"SSLErrorOverrideAllowed": {
"type": "boolean",
"title": "Allow proceeding from the SSL warning page",
"default": true,
"description": "Chrome shows a warning page when users navigate to sites that have SSL errors. By default or when this policy is set to true, users are allowed to click through these warning pages.\nSetting this policy to false disallows users to click through any warning page.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SSLErrorOverrideAllowed"
}
],
"property_order": 1020
},
"SSLVersionMin": {
"type": "string",
"title": "Minimum SSL version enabled",
"description": "If this policy is not configured then Google Chrome uses a default minimum version which is TLS 1.0.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SSLVersionMin"
}
],
"enum": [
"tls1",
"tls1.1",
"tls1.2"
],
"options": {
"enum_titles": [
"TLS 1.0",
"TLS 1.1",
"TLS 1.2"
]
},
"property_order": 1025
},
"SafeSitesFilterBehavior": {
"type": "integer",
"title": "Control SafeSites adult content filtering.",
"description": "This policy controls the application of the SafeSites URL filter.\nThis filter uses the Google Safe Search API to classify URLs as pornographic or not.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SafeSitesFilterBehavior"
}
],
"enum": [
0,
1
],
"options": {
"enum_titles": [
"Do not filter sites for adult content",
"Filter top level sites (but not embedded iframes) for adult content"
]
},
"property_order": 1030
},
"SavingBrowserHistoryDisabled": {
"type": "boolean",
"title": "Disable saving browser history",
"default": false,
"description": "Disables saving browser history in Google Chrome and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SavingBrowserHistoryDisabled"
}
],
"property_order": 1035
},
"ScreenCaptureAllowed": {
"type": "boolean",
"title": "Screen Capture",
"default": true,
"description": "If enabled or not configured (default), a Web page can use screen-share APIs (e.g., getDisplayMedia() or the Desktop Capture extension API) to prompt the user to select a tab, window or desktop to capture.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ScreenCaptureAllowed"
}
],
"property_order": 1040
},
"ScrollToTextFragmentEnabled": {
"type": "boolean",
"title": "Enable scroll to text fragment",
"default": true,
"description": "This feature allows for hyperlinks and address bar URL navigations to target specific text within a web page, which will be scrolled to once the loading of the web page is complete.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ScrollToTextFragmentEnabled"
}
],
"property_order": 1045
},
"SearchSuggestEnabled": {
"type": "boolean",
"title": "Enable search suggestions",
"description": "Enables search suggestions in Google Chrome's omnibox and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SearchSuggestEnabled"
}
],
"property_order": 1050
},
"SecurityKeyPermitAttestation": {
"type": "array",
"items": {
"type": "string"
},
"title": "URLs/domains automatically permitted direct Security Key attestation",
"description": "Specifies URLs and domains for which no prompt will be shown when attestation certificates from Security Keys are requested. Additionally, a signal will be sent to the Security Key indicating that individual attestation may be used. Without this, users will be prompted in Chrome 65+ when sites request attestation of Security Keys.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SecurityKeyPermitAttestation"
}
],
"property_order": 1055
},
"SharedClipboardEnabled": {
"type": "boolean",
"title": "Enable Shared Clipboard",
"default": true,
"description": "Enables the Shared Clipboard feature which allows users to send text between Chrome Desktops and an Android device when Sync is enabled and the user is Signed-in.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SharedClipboardEnabled"
}
],
"property_order": 1060
},
"ShowAppsShortcutInBookmarkBar": {
"type": "boolean",
"title": "Show the apps shortcut in the bookmark bar",
"description": "Enables or disables the apps shortcut in the bookmark bar.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ShowAppsShortcutInBookmarkBar"
}
],
"property_order": 1065
},
"ShowFullUrlsInAddressBar": {
"type": "boolean",
"title": "Show Full URLs",
"description": "This feature enables display of the full URL in the address bar. If this policy is set to True, then the full URL will be shown in the address bar, including schemes and subdomains. If this policy is set to False, then the default URL display will apply.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ShowFullUrlsInAddressBar"
}
],
"property_order": 1070
},
"SignedHTTPExchangeEnabled": {
"type": "boolean",
"title": "Enabled Signed HTTP Exchange (SXG) support",
"default": true,
"description": "Enable support for Signed HTTP Exchange (SXG).",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SignedHTTPExchangeEnabled"
}
],
"property_order": 1075
},
"SigninAllowed": {
"type": "boolean",
"title": "Allow sign in",
"description": "This policy is deprecated, consider using BrowserSignin instead.\n\nAllows the user to sign in to Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SigninAllowed"
}
],
"property_order": 1080
},
"SigninInterceptionEnabled": {
"type": "boolean",
"title": "Enable signin interception",
"description": "This settings enables or disables signin interception. When this policy not set or is set to True, the signin interception dialog triggers when a Google account is added on the web, and the user may benefit from moving this account to another (new or existing) profile. When this is set to False, the signin interception dialog does not trigger.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SigninInterceptionEnabled"
}
],
"property_order": 1085
},
"SitePerProcess": {
"type": "boolean",
"title": "Enable Site Isolation for every site",
"description": "You might want to look at the IsolateOrigins policy setting to get the best of both worlds, isolation and limited impact for users, by using IsolateOrigins with a list of the sites you want to isolate. This setting, SitePerProcess, isolates all sites. If the policy is enabled, each site will run in its own process. If the policy is disabled, no explicit Site Isolation will happen and field trials of IsolateOrigins and SitePerProcess will be disabled. Users will still be able to enable SitePerProcess manually. If the policy is not configured, the user will be able to change this setting. On Google Chrome OS, it is recommended to also set the DeviceLoginScreenSitePerProcess device policy to the same value. If the values specified by the two policies don't match, a delay may be incurred when entering a user session while the value specified by user policy is being applied.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SitePerProcess"
}
],
"property_order": 1090
},
"SpellCheckServiceEnabled": {
"type": "boolean",
"title": "Enable or disable spell checking web service",
"description": "Google Chrome can use a Google web service to help resolve spelling errors. If this setting is enabled, then this service is always used. If this setting is disabled, then this service is never used.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SpellCheckServiceEnabled"
}
],
"property_order": 1095
},
"SpellcheckEnabled": {
"type": "boolean",
"title": "Enable spellcheck",
"description": "If this policy is not set or enabled, the user is allowed to use spellcheck.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SpellcheckEnabled"
}
],
"property_order": 1100
},
"StricterMixedContentTreatmentEnabled": {
"type": "boolean",
"title": "Stricter Mixed Content Treatment",
"default": true,
"description": "This policy controls the treatment for mixed content (HTTP content in HTTPS sites) in the browser. If the policy is set to true or unset, audio and video mixed content will be autoupgraded to HTTPS (i.e. the URL will be rewritten as HTTPS, without a fallback if the resource is not available over HTTPS) and a 'Not Secure' warning will be shown in the URL bar for image mixed content. If the policy is set to false, autoupgrades will be disabled for audio and video, and no warning will be shown for images. This policy does not affect other types of mixed content other than audio, video, and images. This policy will no longer take effect starting in Google Chrome 84.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=StricterMixedContentTreatmentEnabled"
}
],
"property_order": 1105
},
"SuppressUnsupportedOSWarning": {
"type": "boolean",
"title": "Suppress the unsupported OS warning",
"description": "Suppresses the warning that appears when Google Chrome is running on a computer or operating system that is no longer supported.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SuppressUnsupportedOSWarning"
}
],
"property_order": 1110
},
"SyncDisabled": {
"type": "boolean",
"title": "Disable synchronization of data with Google",
"description": "Disables data synchronization in Google Chrome using Google-hosted synchronization services and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SyncDisabled"
}
],
"property_order": 1115
},
"SyncTypesListDisabled": {
"type": "array",
"items": {
"type": "string",
"title": "Data Types",
"enum": [
"apps",
"autofill",
"bookmarks",
"extensions",
"passwords",
"preferences",
"tabs",
"themes",
"typedUrls",
"wifiConfiguration"
],
"options": {
"enum_titles": [
"Apps",
"Autofill",
"Bookmarks",
"Extensions",
"Passwords",
"Preferences",
"Tabs",
"Themes",
"Typed URLs",
"Wifi Configuration"
]
}
},
"title": "Sync types to disable",
"description": "If this policy is set, all specified data types will be excluded from synchronization both for Google Sync as well as for roaming profile synchronization.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SyncTypesListDisabled"
}
],
"property_order": 1120
},
"TLS13HardeningForLocalAnchorsEnabled": {
"type": "boolean",
"title": "Enable TLS 1.3 hardening for local anchors",
"default": true,
"description": "Enable a TLS 1.3 security feature for local trust anchors. This policy controls a security feature in TLS 1.3 which protects connections against downgrade attacks. It is backwards-compatible and will not affect connections to compliant TLS 1.2 servers or proxies. However, older versions of some TLS-intercepting proxies have an implementation flaw which causes them to be incompatible.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=TLS13HardeningForLocalAnchorsEnabled"
}
],
"property_order": 1125
},
"TargetBlankImpliesNoOpener": {
"type": "boolean",
"title": "Do not set window.opener for links targeting _blank",
"default": true,
"description": "Setting the policy to Disabled allows popups targeting _blank to access (via JavaScript) the page that requested to open the popup. Setting the policy to Enabled or leaving it unset causes the window.opener property to be set to null unless the anchor specifies rel=\"opener\".",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=TargetBlankImpliesNoOpener"
}
],
"property_order": 1130
},
"TaskManagerEndProcessEnabled": {
"type": "boolean",
"title": "Enable ending processes in Task Manager",
"default": true,
"description": "If set to false, the 'End process' button is disabled in the Task Manager.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=TaskManagerEndProcessEnabled"
}
],
"property_order": 1135
},
"TotalMemoryLimitMb": {
"type": "integer",
"title": "Total Memory Limit",
"description": "Configures the amount of memory that a single Google Chrome instance can use before tabs start being discarded (I.E. the memory used by the tab will be freed and the tab will have to be reloaded when switched to) to save memory. The minimum allowed value is 1024.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=TotalMemoryLimitMb"
}
],
"property_order": 1140
},
"TranslateEnabled": {
"type": "boolean",
"title": "Enable Translate",
"description": "Enables the integrated Google Translate service on Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=TranslateEnabled"
}
],
"property_order": 1145
},
"URLBlacklist": {
"type": "array",
"items": {
"type": "string"
},
"title": "URL Blacklist",
"description": "This policy prevents the user from loading web pages from blacklisted URLs. The denylist provides a list of URL patterns that specify which URLs will be denied. A URL pattern is formatted according to https://www.chromium.org/administrators/url-blacklist-filter-format.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=URLBlacklist"
}
],
"property_order": 1150
},
"URLBlocklist": {
"type": "array",
"items": {
"type": "string"
},
"title": "URL Blocklist",
"description": "This policy prevents the user from loading web pages from blocked URLs. The blocklist provides a list of URL patterns that specify which URLs will be denied. A URL pattern is formatted according to https://www.chromium.org/administrators/url-blacklist-filter-format.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=URLBlocklist"
}
],
"property_order": 1155
},
"URLWhitelist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow access to a list of URLs",
"description": "Allows access to the listed URLs, as exceptions to the URL denylist. A URL pattern is formatted according to https://www.chromium.org/administrators/url-blacklist-filter-format.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=URLWhitelist"
}
],
"property_order": 1160
},
"URLAllowlist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow access to a list of URLs",
"description": "Allows access to the listed URLs, as exceptions to the URL block list. A URL pattern is formatted according to https://www.chromium.org/administrators/url-blacklist-filter-format.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=URLAllowlist"
}
],
"property_order": 1165
},
"UnsafelyTreatInsecureOriginAsSecure": {
"type": "array",
"items": {
"type": "string"
},
"title": "Origins or hostname patterns for which restrictions on insecure origins should not apply",
"description": "Deprecated in M69. Use OverrideSecurityRestrictionsOnInsecureOrigin instead.\n\nThe policy specifies a list of origins (URLs) or hostname patterns (such as \"*.example.com\") for which security restrictions on insecure origins will not apply.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=UnsafelyTreatInsecureOriginAsSecure"
}
],
"property_order": 1170
},
"UrlKeyedAnonymizedDataCollectionEnabled": {
"type": "boolean",
"title": "Enable URL-keyed anonymized data collection",
"description": "Enable URL-keyed anonymized data collection in Google Chrome and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=UrlKeyedAnonymizedDataCollectionEnabled"
}
],
"property_order": 1175
},
"UserAgentClientHintsEnabled": {
"type": "boolean",
"title": "Enable user agent client hints",
"description": "When enabled the User-Agent Client Hints feature sends granular request headers providing information about the user browser and environment.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=UserAgentClientHintsEnabled"
}
],
"property_order": 1180
},
"UserFeedbackAllowed": {
"type": "boolean",
"title": "Allow user feedback",
"default": true,
"description": "Allow user feedback. If the policy is set to false, users can not send feedback to Google.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=UserFeedbackAllowed"
}
],
"property_order": 1185
},
"UserDataDir": {
"type": "string",
"title": "Set user data directory",
"description": "Configures the directory that Google Chrome will use for storing user data. See https://www.chromium.org/administrators/policy-list-3/user-data-directory-variables for a list of variables that can be used.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=UserDataDir"
}
],
"property_order": 1190
},
"UserDataSnapshotRetentionLimit": {
"type": "integer",
"title": "User data snapshot retention limit",
"default": 3,
"description": "Limits the number of user data snapshots retained for use in case of emergency rollback. If this policy is not set, the default value of 3 is used. If the policy is set to 0, no snapshots will be taken.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=UserDataSnapshotRetentionLimit"
}
],
"property_order": 1195
},
"VideoCaptureAllowed": {
"type": "boolean",
"title": "Allow or deny video capture",
"default": true,
"description": "If enabled or not configured (default), the user will be prompted for\nvideo capture access except for URLs configured in the\nVideoCaptureAllowedUrls list which will be granted access without prompting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=VideoCaptureAllowed"
}
],
"property_order": 1200
},
"VideoCaptureAllowedUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "URLs that will be granted access to video capture devices without prompt",
"description": "Patterns in this list will be matched against the security\norigin of the requesting URL. If a match is found, access to audio\ncapture devices will be granted without prompt.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=VideoCaptureAllowedUrls"
}
],
"property_order": 1205
},
"WPADQuickCheckEnabled": {
"type": "boolean",
"title": "Enable WPAD optimization",
"default": true,
"description": "Allows to turn off WPAD (Web Proxy Auto-Discovery) optimization in Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=WPADQuickCheckEnabled"
}
],
"property_order": 1210
},
"WebAppInstallForceList": {
"type": "array",
"items": {
"type": "object",
"properties": {
"url": {
"type": "string",
"pattern": "^https?://.*"
},
"create_desktop_shortcut": {
"type": "boolean"
},
"default_launch_container": {
"type": "string",
"enum": [
"window",
"tab"
],
"options": {
"enum_titles": [
"Window",
"Tab"
]
}
}
}
},
"title": "WebApp Force Install List",
"description": "Specifies a list of websites that are installed silently, without user interaction, and which cannot be uninstalled nor disabled by the user.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=WebAppInstallForceList"
}
],
"property_order": 1215
},
"WebComponentsV0Enabled": {
"type": "boolean",
"title": "Re-enable Web Components v0 API until M84",
"default": false,
"description": "The Web Components v0 APIs (Shadow DOM v0, Custom Elements v0, and HTML Imports) were deprecated in 2018, and have been disabled by default starting in M80. This policy allows these features to be selectively re-enabled until M84.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=WebComponentsV0Enabled"
}
],
"property_order": 1220
},
"WebDriverOverridesIncompatiblePolicies": {
"type": "boolean",
"title": "Allow WebDriver to Override Incompatible Policies",
"default": false,
"description": "This policy allows users of the WebDriver feature to override policies which can interfere with its operation.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=WebDriverOverridesIncompatiblePolicies"
}
],
"property_order": 1225
},
"WebRtcAllowLegacyTLSProtocols": {
"type": "boolean",
"title": "Allow legacy TLS/DTLS downgrade in WebRTC",
"description": "f enabled, WebRTC peer connections can downgrade to obsolete versions of the TLS/DTLS (DTLS 1.0, TLS 1.0 and TLS 1.1) protocols. When this policy is disabled or not set, these TLS/DTLS versions are disabled.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=WebRtcAllowLegacyTLSProtocols"
}
],
"property_order": 1230
},
"WebRtcEventLogCollectionAllowed": {
"type": "boolean",
"title": "Allow collection of WebRTC event logs from Google services",
"description": "If the policy is set to true, Google Chrome is allowed to collect WebRTC event logs from Google services (e.g. Google Meet), and upload those logs to Google.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=WebRtcEventLogCollectionAllowed"
}
],
"property_order": 1235
},
"WebRtcLocalIpsAllowedUrls": {
"type": "array",
"items": {
"type": "string",
"title": "URL"
},
"title": "Allowed WebRTC local IP URLs",
"description": "Patterns in this list will be matched against the security origin of the requesting URL. If a match is found or chrome://flags/#enable-webrtc-hide-local-ips-with-mdns is Disabled, the local IP addresses are shown in WebRTC ICE candidates. Otherwise, local IP addresses are concealed with mDNS hostnames.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=WebRtcLocalIpsAllowedUrls"
}
],
"property_order": 1240
},
"WebRtcUdpPortRange": {
"type": "string",
"title": "Restrict the range of local UDP ports used by WebRTC",
"description": "If the policy is set, the UDP port range used by WebRTC is restricted to the specified port interval (endpoints included).",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=WebRtcUdpPortRange"
}
],
"property_order": 1245
},
"NativeMessagingBlacklist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Native Messaging Host Blacklist",
"description": "Allows you to specify which native messaging hosts that should not be loaded. A blacklist value of '*' means all native messaging hosts are denied unless they are explicitly listed in the allowlist.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NativeMessagingBlacklist"
}
],
"property_order": 1250
},
"NativeMessagingBlocklist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Native Messaging Host Blocklist",
"description": "Allows you to specify which native messaging hosts that should not be loaded. A block list value of '*' means all native messaging hosts are denied unless they are explicitly listed in the allow list.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NativeMessagingBlocklist"
}
],
"property_order": 1255
},
"NativeMessagingUserLevelHosts": {
"type": "boolean",
"title": "Allow user-level Native Messaging hosts (installed without admin permissions)",
"description": "Enables user-level installation of Native Messaging hosts.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NativeMessagingUserLevelHosts"
}
],
"property_order": 1260
},
"NativeMessagingWhitelist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Native Messaging Host Whitelist",
"description": "Allows you to specify which native messaging hosts are not subject to the blacklist. A blacklist value of * means all native messaging hosts are denied and only native messaging hosts listed in the whitelist will be loaded.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NativeMessagingWhitelist"
}
],
"property_order": 1265
},
"NativeMessagingAllowlist": {
"type": "array",
"items": {
"type": "string"
},
"title": "Native Messaging Host Allowlist",
"description": "Allows you to specify which native messaging hosts are not subject to the block list. A block list value of * means all native messaging hosts are denied and only native messaging hosts listed in the allow list will be loaded.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NativeMessagingAllowlist"
}
],
"property_order": 1270
},
"PasswordLeakDetectionEnabled": {
"type": "boolean",
"title": "Enable password leak detection",
"description": "This policy can be used to force enable or force disable credential leak checking in Google Chrome.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PasswordLeakDetectionEnabled"
}
],
"property_order": 1275
},
"PasswordManagerEnabled": {
"type": "boolean",
"title": "Enable saving passwords to the password manager",
"description": "If this setting is enabled, users can have Google Chrome memorize passwords and provide them automatically the next time they log in to a site.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PasswordManagerEnabled"
}
],
"property_order": 1280
},
"CloudPrintProxyEnabled": {
"type": "boolean",
"title": "Enable Google Cloud Print proxy",
"default": true,
"description": "Enables Google Chrome to act as a proxy between Google Cloud Print and legacy printers connected to the machine.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CloudPrintProxyEnabled"
}
],
"property_order": 1285
},
"CloudPrintSubmitEnabled": {
"type": "boolean",
"title": "Enable submission of documents to Google Cloud Print",
"default": true,
"description": "Enables Google Chrome to submit documents to Google Cloud Print for printing. NOTE: This only affects Google Cloud Print support in Google Chrome. It does not prevent users from submitting print jobs on web sites.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=CloudPrintSubmitEnabled"
}
],
"property_order": 1290
},
"DefaultPrinterSelection": {
"type": "string",
"title": "Default printer selection rules",
"description": "Overrides Google Chrome default printer selection rules.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DefaultPrinterSelection"
}
],
"property_order": 1295
},
"DisablePrintPreview": {
"type": "boolean",
"title": "Disable Print Preview",
"default": false,
"description": "Show the system print dialog instead of print preview.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DisablePrintPreview"
}
],
"property_order": 1300
},
"PrintHeaderFooter": {
"type": "boolean",
"title": "Print Headers & Footers",
"description": "Force 'headers and footers' to be on or off in the printing dialog.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PrintHeaderFooter"
}
],
"property_order": 1305
},
"PrinterTypeDenyList": {
"type": "array",
"items": {
"type": "string",
"title": "Printer Type",
"enum": [
"privet",
"extension",
"pdf",
"local",
"cloud"
],
"options": {
"enum_titles": [
"Zeroconf-based (mDNS + DNS-SD) protocol destinations",
"Extension-based destinations",
"The 'Save as PDF' destination",
"Local printer destinations",
"Google Cloud Print and 'Save to Google Drive' destinations"
]
}
},
"title": "Printer Type Deny List",
"description": "The printers of types placed on the deny list will be disabled from being discovered or having their capabilities fetched.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PrinterTypeDenyList"
}
],
"property_order": 1310
},
"PrintingAllowedBackgroundGraphicsModes": {
"type": "string",
"title": "Background graphics printing mode",
"description": "Restricts background graphics printing mode. Unset policy is treated as no restriction.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PrintingAllowedBackgroundGraphicsModes"
}
],
"enum": [
"any",
"enabled",
"disabled"
],
"options": {
"enum_titles": [
"Allow printing both with and without background graphics",
"Allow printing only with background graphics",
"Allow printing only without background graphics"
]
},
"property_order": 1315
},
"PrintingBackgroundGraphicsDefault": {
"type": "string",
"title": "Default background graphics printing mode",
"description": "Overrides default background graphics printing mode.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PrintingBackgroundGraphicsDefault"
}
],
"enum": [
"enabled",
"disabled"
],
"options": {
"enum_titles": [
"Enabled",
"Disabled"
]
},
"property_order": 1320
},
"PrintingEnabled": {
"type": "boolean",
"title": "Enable printing",
"default": true,
"description": "Enables printing in Google Chrome and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PrintingEnabled"
}
],
"property_order": 1325
},
"PrintPreviewUseSystemDefaultPrinter": {
"type": "boolean",
"title": "Use System Default Printer as Default",
"default": false,
"description": "Causes Google Chrome to use the system default printer as the default choice in Print Preview instead of the most recently used printer.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PrintPreviewUseSystemDefaultPrinter"
}
],
"property_order": 1330
},
"PrinterPaperSizeDefault": {
"type": "object",
"title": "Default printer paper size",
"description": "Overrides default printing page size. If 'custom' is provided, custom size width and height keys must also be included.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PrintingPaperSizeDefault"
}
],
"properties": {
"custom_size": {
"type": "object",
"title": "Custom Size",
"properties": {
"width": {
"type": "integer",
"title": "Width",
"description": "Width of the page"
},
"height": {
"type": "integer",
"title": "Height",
"description": "Height of the page"
}
}
},
"name": {
"type": "string",
"title": "Name",
"enum": [
"custom",
"asme_f_28x40in",
"iso_2a0_1189x1682mm",
"iso_a0_841x1189mm",
"iso_a1_594x841mm",
"iso_a2_420x594mm",
"iso_a3_297x420mm",
"iso_a4-extra_235.5x322.3mm",
"iso_a4-tab_225x297mm",
"iso_a4_210x297mm",
"iso_a5-extra_174x235mm",
"iso_a5_148x210mm",
"iso_a6_105x148mm",
"iso_a7_74x105mm",
"iso_a8_52x74mm",
"iso_a9_37x52mm",
"iso_a10_26x37mm",
"iso_b0_1000x1414mm",
"iso_b1_707x1000mm",
"iso_b2_500x707mm",
"iso_b3_353x500mm",
"iso_b4_250x353mm",
"iso_b5-extra_201x276mm",
"iso_b5_176x250mm",
"iso_b6_125x176mm",
"iso_b6c4_125x324mm",
"iso_b7_88x125mm",
"iso_b8_62x88mm",
"iso_b9_44x62mm",
"iso_b10_31x44mm",
"iso_c0_917x1297mm",
"iso_c1_648x917mm",
"iso_c2_458x648mm",
"iso_c3_324x458mm",
"iso_c4_229x324mm",
"iso_c5_162x229mm",
"iso_c6_114x162mm",
"iso_c6c5_114x229mm",
"iso_c7_81x114mm",
"iso_c7c6_81x162mm",
"iso_c8_57x81mm",
"iso_c9_40x57mm",
"iso_c10_28x40mm",
"iso_dl_110x220mm",
"jis_exec_216x330mm",
"jpn_chou2_111.1x146mm",
"jpn_chou3_120x235mm",
"jpn_chou4_90x205mm",
"jpn_hagaki_100x148mm",
"jpn_kahu_240x322.1mm",
"jpn_kaku2_240x332mm",
"jpn_oufuku_148x200mm",
"jpn_you4_105x235mm",
"na_10x11_10x11in",
"na_10x13_10x13in",
"na_10x14_10x14in",
"na_10x15_10x15in",
"na_11x12_11x12in",
"na_11x15_11x15in",
"na_12x19_12x19in",
"na_5x7_5x7in",
"na_6x9_6x9in",
"na_7x9_7x9in",
"na_9x11_9x11in",
"na_a2_4.375x5.75in",
"na_arch-a_9x12in",
"na_arch-b_12x18in",
"na_arch-c_18x24in",
"na_arch-d_24x36in",
"na_arch-e_36x48in",
"na_b-plus_12x19.17in",
"na_c5_6.5x9.5in",
"na_c_17x22in",
"na_d_22x34in",
"na_e_34x44in",
"na_edp_11x14in",
"na_eur-edp_12x14in",
"na_f_44x68in",
"na_fanfold-eur_8.5x12in",
"na_fanfold-us_11x14.875in",
"na_foolscap_8.5x13in",
"na_govt-legal_8x13in",
"na_govt-letter_8x10in",
"na_index-3x5_3x5in",
"na_index-4x6-ext_6x8in",
"na_index-4x6_4x6in",
"na_index-5x8_5x8in",
"na_invoice_5.5x8.5in",
"na_ledger_11x17in",
"na_legal-extra_9.5x15in",
"na_legal_8.5x14in",
"na_letter-extra_9.5x12in",
"na_letter-plus_8.5x12.69in",
"na_letter_8.5x11in",
"na_number-10_4.125x9.5in",
"na_number-11_4.5x10.375in",
"na_number-12_4.75x11in",
"na_number-14_5x11.5in",
"na_personal_3.625x6.5in",
"na_super-a_8.94x14in",
"na_super-b_13x19in",
"na_wide-format_30x42in",
"om_dai-pa-kai_275x395mm",
"om_folio-sp_215x315mm",
"om_invite_220x220mm",
"om_italian_110x230mm",
"om_juuro-ku-kai_198x275mm",
"om_large-photo_200x300",
"om_pa-kai_267x389mm",
"om_postfix_114x229mm",
"om_small-photo_100x150mm",
"prc_10_324x458mm",
"prc_16k_146x215mm",
"prc_1_102x165mm",
"prc_2_102x176mm",
"prc_32k_97x151mm",
"prc_3_125x176mm",
"prc_4_110x208mm",
"prc_5_110x220mm",
"prc_6_120x320mm",
"prc_7_160x230mm",
"prc_8_120x309mm",
"roc_16k_7.75x10.75in",
"roc_8k_10.75x15.5in",
"jis_b0_1030x1456mm",
"jis_b1_728x1030mm",
"jis_b2_515x728mm",
"jis_b3_364x515mm",
"jis_b4_257x364mm",
"jis_b5_182x257mm",
"jis_b6_128x182mm",
"jis_b7_91x128mm",
"jis_b8_64x91mm",
"jis_b9_45x64mm",
"jis_b10_32x45mm"
]
}
},
"property_order": 1335
},
"ProxyBypassList": {
"type": "string",
"title": "Comma-separated list of proxy bypass rules",
"description": "Google Chrome will bypass any proxy for the list of hosts given here.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ProxyBypassList"
}
],
"property_order": 1340
},
"ProxyMode": {
"type": "string",
"title": "Choose how to specify proxy server settings",
"description": "Allows you to specify the proxy server used by Google Chrome and prevents users from changing proxy settings.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ProxyMode"
}
],
"enum": [
"direct",
"auto_detect",
"pac_script",
"fixed_servers",
"system"
],
"options": {
"enum_titles": [
"Never use a proxy",
"Auto detect proxy settings",
"Use a .pac proxy script",
"Use fixed proxy servers",
"Use system proxy settings"
]
},
"property_order": 1345
},
"ProxyPacUrl": {
"type": "string",
"title": "URL to a proxy .pac file",
"description": "You can specify a URL to a proxy .pac file here.",
"pattern": "https?://.*.pac$",
"property_order": 1350
},
"ProxyServer": {
"type": "string",
"title": "Address or URL of proxy server",
"description": "You can specify the URL of the proxy server here.",
"property_order": 1355
},
"ProxyServerMode": {
"type": "integer",
"title": "Proxy server settings",
"description": "This policy is deprecated, use ProxyMode instead.\n\nAllows you to specify the proxy server used by Google Chrome and prevents users from changing proxy settings.",
"enum": [
0,
1,
2,
3
],
"options": {
"enum_titles": [
"Never use a proxy",
"Auto detect proxy settings",
"Manually specify proxy settings",
"Use system proxy settings"
]
},
"property_order": 1360
},
"RemoteAccessHostAllowClientPairing": {
"type": "boolean",
"title": "Enable or disable PIN-less authentication for remote access hosts",
"default": true,
"description": "If this setting is enabled or not configured, then users can opt to pair clients and hosts at connection time, eliminating the need to enter a PIN every time.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostAllowClientPairing"
}
],
"property_order": 1365
},
"RemoteAccessHostAllowFileTransfer": {
"type": "boolean",
"title": "Allow remote access file transfer",
"description": "Controls the ability of a user connected to a remote access host to transfer files between the client and the host. This does not apply to remote assistance connections, which do not support file transfer.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostAllowFileTransfer"
}
],
"property_order": 1370
},
"RemoteAccessHostAllowGnubbyAuth": {
"type": "boolean",
"title": "Allow gnubby authentication for remote access hosts",
"default": false,
"description": "If this setting is enabled, then gnubby authentication requests will be proxied across a remote host connection.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostAllowGnubbyAuth"
}
],
"property_order": 1375
},
"RemoteAccessHostAllowRelayedConnection": {
"type": "boolean",
"title": "Enable the use of relay servers by the remote access host",
"default": true,
"description": "Enables usage of relay servers when remote clients are trying to establish a connection to this machine.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostAllowRelayedConnection"
}
],
"property_order": 1380
},
"RemoteAccessHostClientDomain": {
"type": "array",
"items": {
"type": "string"
},
"title": "Configure the required domain names for remote access clients",
"description": "Configure the required domain name for remote access clients. This policy is deprecated. Please use RemoteAccessHostClientDomainList instead.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostClientDomain"
}
],
"property_order": 1385
},
"RemoteAccessHostClientDomainList": {
"type": "array",
"items": {
"type": "string"
},
"title": "Configure the required domain names for remote access clients",
"description": "Configures the required client domain names that will be imposed on remote access clients and prevents users from changing it.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostClientDomainList"
}
],
"property_order": 1390
},
"RemoteAccessHostDomain": {
"type": "array",
"items": {
"type": "string"
},
"title": "Configure the required domain names for remote access hosts",
"description": "Configure the required domain name for remote access hosts. This policy is deprecated. Please use RemoteAccessHostDomainList instead.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostDomain"
}
],
"property_order": 1395
},
"RemoteAccessHostDomainList": {
"type": "array",
"items": {
"type": "string"
},
"title": "Configure the required domain names for remote access hosts",
"description": "Configures the required host domain names that will be imposed on remote access hosts and prevents users from changing it.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostDomainList"
}
],
"property_order": 1400
},
"RemoteAccessHostFirewallTraversal": {
"type": "boolean",
"title": "Enable firewall traversal from remote access host",
"default": false,
"description": "Enables usage of STUN servers when remote clients are trying to establish a connection to this machine.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostFirewallTraversal"
}
],
"property_order": 1405
},
"RemoteAccessHostMatchUsername": {
"type": "boolean",
"title": "Require that the name of the local user and the remote access host owner match",
"default": false,
"description": "If this setting is enabled, then the remote access host compares the name of the local user (that the host is associated with) and the name of the Google account registered as the host owner (i.e. \"johndoe\" if the host is owned by \"johndoe@example.com\" Google account). The remote access host will not start if the name of the host owner is different from the name of the local user that the host is associated with. RemoteAccessHostMatchUsername policy should be used together with RemoteAccessHostDomain to also enforce that the Google account of the host owner is associated with a specific domain (i.e. \"example.com\").",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostMatchUsername"
}
],
"property_order": 1410
},
"RemoteAccessHostRequireCurtain": {
"type": "boolean",
"title": "Enable curtaining of remote access hosts",
"default": false,
"description": "Enables curtaining of remote access hosts while a connection is in progress.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostRequireCurtain"
}
],
"property_order": 1415
},
"RemoteAccessHostTalkGadgetPrefix": {
"type": "string",
"title": "Configure the TalkGadget prefix for remote access hosts",
"description": "Configures the TalkGadget prefix that will be used by remote access hosts and prevents users from changing it.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostTalkGadgetPrefix"
}
],
"property_order": 1420
},
"RemoteAccessHostTokenUrl": {
"type": "string",
"title": "URL where remote access clients should obtain their authentication token",
"description": "If this policy is set, the remote access host will require authenticating clients to obtain an authentication token from this URL in order to connect. Must be used in conjunction with RemoteAccessHostTokenValidationUrl.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostTokenUrl"
}
],
"property_order": 1425
},
"RemoteAccessHostTokenValidationCertificateIssuer": {
"type": "string",
"title": "Client certificate for connecting to RemoteAccessHostTokenValidationUrl",
"description": "If this policy is set, the host will use a client certificate with the given issuer CN to authenticate to RemoteAccessHostTokenValidationUrl. Set it to \"*\" to use any available client certificate.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostTokenValidationCertificateIssuer"
}
],
"property_order": 1430
},
"RemoteAccessHostTokenValidationUrl": {
"type": "string",
"title": "URL for validating remote access client authentication token",
"description": "If this policy is set, the remote access host will use this URL to validate authentication tokens from remote access clients, in order to accept connections. Must be used in conjunction with RemoteAccessHostTokenUrl.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostTokenValidationUrl"
}
],
"property_order": 1435
},
"RemoteAccessHostUdpPortRange": {
"type": "string",
"title": "Restrict the UDP port range used by the remote access host",
"description": "Restricts the UDP port range used by the remote access host in this machine.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RemoteAccessHostUdpPortRange"
}
],
"property_order": 1440
},
"PasswordProtectionChangePasswordURL": {
"type": "string",
"title": "Configure the change password URL.",
"description": "Configure the change password URL (HTTP and HTTPS schemes only). Password protection service will send users to this URL to change their password after seeing a warning in the browser.\nIn order for Google Chrome to correctly capture the new password fingerprint on this change password page, please make sure your change password page follows the guidelines on https://www.chromium.org/developers/design-documents/create-amazing-password-forms.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PasswordProtectionChangePasswordURL"
}
],
"property_order": 1445
},
"PasswordProtectionLoginURLs": {
"type": "array",
"items": {
"type": "string"
},
"title": "Configure the list of enterprise login URLs where password protection service should capture fingerprint of password.",
"description": "Configure the list of enterprise login URLs (HTTP and HTTPS schemes only). Fingerprint of password will be captured on these URLs and used for password reuse detection.\nIn order for Google Chrome to correctly capture password fingerprints, please make sure your login pages follow the guidelines on https://www.chromium.org/developers/design-documents/create-amazing-password-forms.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PasswordProtectionLoginURLs"
}
],
"property_order": 1450
},
"PasswordProtectionWarningTrigger": {
"type": "integer",
"title": "Password protection warning trigger",
"description": "Allows you to control the triggering of passwore protection warning. Password protection alerts users when they reuse their protected password on potentially suspicious sites.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=PasswordProtectionWarningTrigger"
}
],
"enum": [
0,
1,
2
],
"options": {
"enum_titles": [
"Password protection warning is off",
"Password protection warning is triggered by password reuse",
"Password protection warning is triggered by password reuse on phishing page"
]
},
"property_order": 1455
},
"SafeBrowsingEnabled": {
"type": "boolean",
"title": "Enable Safe Browsing",
"description": "Enables Google Chrome's Safe Browsing feature and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SafeBrowsingEnabled"
}
],
"property_order": 1460
},
"SafeBrowsingExtendedReportingEnabled": {
"type": "boolean",
"title": "Enable Safe Browsing Extended Reporting",
"description": "Enables Google Chrome's Safe Browsing Extended Reporting and prevents users from changing this setting.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SafeBrowsingExtendedReportingEnabled"
}
],
"property_order": 1465
},
"SafeBrowsingProtectionLevel": {
"type": "integer",
"title": "Safe Browsing protection level",
"default": 1,
"description": "Allows you to control whether Google Chrome's Safe Browsing feature is enabled and the mode it operates in. Safe Browsing 'enhanced' mode provides better security, but requires sharing more browsing information with Google.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SafeBrowsingProtectionLevel"
}
],
"enum": [
0,
1,
2
],
"options": {
"enum_titles": [
"Safe Browsing is never active",
"Safe Browsing is active in the standard mode",
"Safe Browsing is active in the enhanced mode"
]
},
"property_order": 1470
},
"SafeBrowsingWhitelistDomains": {
"type": "array",
"items": {
"type": "string"
},
"title": "Configure the list of domains on which Safe Browsing will not trigger warnings.",
"description": "Configure the list of domains which Safe Browsing will trust. This means:\nSafe Browsing will not check for dangerous resources (e.g. phishing, malware, or unwanted software) if their URLs match these domains.\nSafe Browsing's download protection service will not check downloads hosted on these domains.\nSafe Browsing's password protection service will not check for password reuse if the page URL matches these domains.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SafeBrowsingWhitelistDomains"
}
],
"property_order": 1475
},
"SafeBrowsingAllowlistDomains": {
"type": "array",
"items": {
"type": "string"
},
"title": "Configure the list of domains on which Safe Browsing will not trigger warnings.",
"description": "Configure the list of domains which Safe Browsing will trust. This means:\nSafe Browsing will not check for dangerous resources (e.g. phishing, malware, or unwanted software) if their URLs match these domains.\nSafe Browsing's download protection service will not check downloads hosted on these domains.\nSafe Browsing's password protection service will not check for password reuse if the page URL matches these domains.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SafeBrowsingAllowlistDomains"
}
],
"property_order": 1480
},
"SafeBrowsingExtendedReportingOptInAllowed": {
"type": "boolean",
"title": "Allow users to opt in to Safe Browsing extended reporting",
"default": true,
"description": "This setting is deprecated, use SafeBrowsingExtendedReportingEnabled instead. Enabling or disabling SafeBrowsingExtendedReportingEnabled is equivalent to setting SafeBrowsingExtendedReportingOptInAllowed to False.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=SafeBrowsingExtendedReportingEnabled"
}
],
"property_order": 1485
},
"HomepageIsNewTabPage": {
"type": "boolean",
"title": "Use New Tab Page as homepage",
"description": "Configures the type of the default home page in Google Chrome and prevents users from changing home page preferences. The home page can either be set to a URL you specify or set to the New Tab Page.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=HomepageIsNewTabPage"
}
],
"property_order": 1490
},
"HomepageLocation": {
"type": "string",
"title": "Home page URL",
"description": "Configures the default home page URL in Google Chrome and prevents users from changing it.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=HomepageLocation"
}
],
"property_order": 1495
},
"NewTabPageLocation": {
"type": "string",
"title": "New Tab page URL",
"description": "Configures the default New Tab page URL and prevents users from changing it.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=NewTabPageLocation"
}
],
"property_order": 1500
},
"RestoreOnStartup": {
"type": "integer",
"title": "Action on startup",
"description": "Allows you to specify the behavior on startup.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RestoreOnStartup"
}
],
"enum": [
5,
1,
4
],
"options": {
"enum_titles": [
"Open New Tab Page",
"Restore the last session",
"Open a list of URLs"
]
},
"property_order": 1505
},
"RestoreOnStartupURLs": {
"type": "array",
"items": {
"type": "string"
},
"title": "URLs to open on startup",
"description": "If 'Open a list of URLs' is selected as the startup action, this allows you to specify the list of URLs that are opened. If left not set no URL will be opened on start up.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=RestoreOnStartupURLs"
}
],
"property_order": 1510
},
"ShowHomeButton": {
"type": "boolean",
"title": "Show Home button on toolbar",
"description": "Shows the Home button on Google Chrome's toolbar.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=ShowHomeButton"
}
],
"property_order": 1515
},
"WebUsbAskForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Allow WebUSB on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are allowed to ask the user to grant them access to a USB device.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=WebUsbAskForUrls"
}
],
"property_order": 1520
},
"WebUsbBlockedForUrls": {
"type": "array",
"items": {
"type": "string"
},
"title": "Block WebUSB on these sites",
"description": "Allows you to set a list of url patterns that specify sites which are prevented from asking the user to grant them access to a USB device.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=WebUsbBlockedForUrls"
}
],
"property_order": 1525
},
"DeveloperToolsDisabled": {
"type": "boolean",
"title": "Control where Developer Tools can be used",
"default": false,
"description": "Disables the Developer Tools and the JavaScript console. This policy is deprecated in M68, please use DeveloperToolsAvailability instead.",
"links": [
{
"rel": "More information",
"href": "https://cloud.google.com/docs/chrome-enterprise/policies/?policy=DeveloperToolsDisabled"
}
],
"property_order": 1530
}
}
}
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 10-17-2023 01:29 PM
Hi Thank you for your help.
I will try this Jason file.
I am using a forceinstall json file to install 3 extensions at once.
I connected with support, and they said they have no issue using that json file.
Is it because we are using Cloud Managed Chrome?
Thanks,
