| V-221558 | | Firewall traversal from remote host must be disabled. | Remote connections should never be allowed that bypass the firewall, as there is no way to verify if they can be trusted. Enables usage of STUN and re... |
| V-221559 | | Site tracking users location must be disabled. | Website tracking is the practice of gathering information as to which websites were accesses by a browser. The common method of doing this is to have ... |
| V-221561 | | Sites ability to show pop-ups must be disabled. | Chrome allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. If... |
| V-221562 | | Extensions installation must be blocklisted by default. | Extensions are developed by third party sources and are designed to extend Google Chrome's functionality. An extension can be made by anyone, to do an... |
| V-221564 | | The default search providers name must be set. | Specifies the name of the default search provider that is to be used, if left empty or not set, the host name specified by the search URL will be used... |
| V-221565 | | The default search provider URL must be set to perform encrypted searches. | Specifies the URL of the search engine used when doing a default search. The URL should contain the string '{searchTerms}', which will be replaced at ... |
| V-221566 | | Default search provider must be enabled. | Policy enables the use of a default search provider. If you enable this setting, a default search is performed when the user types text in the omnibox... |
| V-221567 | | The Password Manager must be disabled. | Enables saving passwords and using saved passwords in Google Chrome. Malicious sites may take advantage of this feature by using hidden fields gain ac... |
| V-221570 | | Background processing must be disabled. | Determines whether a Google Chrome process is started on OS login that keeps running when the last browser window is closed, allowing background apps ... |
| V-221571 | | Google Data Synchronization must be disabled. | Disables data synchronization in Google Chrome using Google-hosted synchronization services and prevents users from changing this setting. If you enab... |
| V-221572 | | The URL protocol schema javascript must be disabled. | Each access to a URL is handled by the browser according to the URL's "scheme". The "scheme" of a URL is the section before the ":". The term "protoco... |
| V-221573 | | Cloud print sharing must be disabled. | Policy enables Google Chrome to act as a proxy between Google Cloud Print and legacy printers connected to the machine. If this setting is enabled or ... |
| V-221574 | | Network prediction must be disabled. | Enables network prediction in Google Chrome and prevents users from changing this setting. If you enable or disable this setting, users cannot change ... |
| V-221575 | | Metrics reporting to Google must be disabled. | Enables anonymous reporting of usage and crash-related data about Google Chrome to Google and prevents users from changing this setting. If you enable... |
| V-221576 | | Search suggestions must be disabled. | Search suggestion should be disabled as it could lead to searches being conducted that were never intended to be made. Enables search suggestions in G... |
| V-221577 | | Importing of saved passwords must be disabled. | Importing of saved passwords should be disabled as it could lead to unencrypted account passwords stored on the system from another browser to be view... |
| V-221578 | | Incognito mode must be disabled. | Incognito mode allows the user to browse the Internet without recording their browsing history/activity. From a forensics perspective, this is unacce... |
| V-221579 | | Online revocation checks must be performed. | By setting this policy to true, the previous behavior is restored and online OCSP/CRL checks will be performed. If the policy is not set, or is set to... |
| V-221580 | | Safe Browsing must be enabled. | Allows you to control whether Google Chrome's Safe Browsing feature is enabled and the mode it operates in.
If this policy is set to 'NoProtection' (... |
| V-221581 | | Browser history must be saved. | This policy disables saving browser history in Google Chrome and prevents users from changing this setting. If this setting is enabled, browsing histo... |
| V-221584 | | The version of Google Chrome running on the system must be a supported version. | Google Chrome is being continually updated by the vendor in order to address identified security vulnerabilities. Running an older version of the brow... |
| V-221586 | | Deletion of browser history must be disabled. | Disabling this function will prevent users from deleting their browsing history, which could be used to identify malicious websites and files that cou... |
| V-221587 | | Prompt for download location must be enabled. | If the policy is enabled, the user will be asked where to save each file before downloading. If the policy is disabled, downloads will start immediate... |
| V-221588 | | Download restrictions must be configured. | Setting the policy means users cannot bypass download security decisions. There are many types of download warnings within Chrome, which roughly break... |
| V-221590 | | Safe Browsing Extended Reporting must be disabled. | Enables Google Chrome's Safe Browsing Extended Reporting and prevents users from changing this setting. Extended Reporting sends some system informati... |
| V-221591 | | WebUSB must be disabled. | Allows you to set whether websites are allowed to get access to connected USB devices. Access can be completely blocked, or the user can be asked ever... |
| V-221594 | | Google Cast must be disabled. | If this policy is set to ”True” or is not set, Google Cast will be enabled, and users will be able to launch it from the app menu, page context menus,... |
| V-221595 | | Autoplay must be disabled. | This allows a user to control if videos can play automatically with audio content (without user consent) in Google Chrome.
If the policy is set to "T... |
| V-221596 | | URLs must be allowlisted for Autoplay use. | Controls the allowlist of URL patterns that autoplay will always be enabled on. If the "AutoplayAllowed" policy is set to "True" then this policy will... |
| V-221597 | | Anonymized data collection must be disabled. | Enable URL-keyed anonymized data collection in Google Chrome and prevent users from changing this setting.
URL-keyed anonymized data collection sends ... |
| V-221598 | | Collection of WebRTC event logs must be disabled. | If the policy is set to “true”, Google Chrome is allowed to collect WebRTC event logs from Google services (e.g., Google Meet), and upload those logs ... |
| V-226401 | | Guest Mode must be disabled. | If this policy is set to true or not configured, Google Chrome will enable guest logins. Guest logins are Google Chrome profiles where all windows are... |
| V-226402 | | AutoFill for credit cards must be disabled. | Enabling Google Chrome's AutoFill feature allows users to auto complete credit card information in web forms using previously stored information.
If t... |
| V-226403 | | AutoFill for addresses must be disabled. | Enabling Google Chrome's AutoFill feature allows users to auto complete address information in web forms using previously stored information.
If this ... |
| V-226404 | | Import AutoFill form data must be disabled. | This policy forces the autofill form data to be imported from the previous default browser if enabled. If enabled, this policy also affects the import... |
| V-241787 | | Web Bluetooth API must be disabled. | Setting the policy to 3 lets websites ask for access to nearby Bluetooth devices. Setting the policy to 2 denies access to nearby Bluetooth devices.
... |
| V-245538 | | Use of the QUIC protocol must be disabled. | QUIC is used by more than half of all connections from the Chrome web browser to Google's servers, and this activity is undesirable in the DoD.
Setti... |
| V-245539 | | Session only based cookies must be enabled. | Cookies must only be allowed per session and only for approved URLs as permanently stored cookies can be used for malicious intent.
Approved URLs ma... |
| V-275780 | | Create Themes with AI must be disabled. | Create Themes with AI lets users create custom themes/wallpapers by preselecting from a list of options.
0 = Allow the feature to be used, while allo... |
| V-275781 | | DevTools Generative AI features must be disabled. | These features in Google Chrome's DevTools employ generative AI models to provide additional debugging information. To use these features, Google Chro... |
| V-275782 | | GenAI local foundational model must be disabled. | Configure how Google Chrome downloads the foundational GenAI model and uses it for inference locally.
When the policy is set to Allowed (0) or not se... |
| V-275783 | | Help Me Write must be disabled. | Help Me Write is an AI-based writing assistant for short-form content on the web. Suggested content is based on prompts entered by the user and the co... |
| V-275784 | | AI-powered History Search must be disabled. | AI History Search is a feature that allows users to search their browsing history and receive generated answers based on page contents and not just th... |
| V-275785 | | Tab Compare Settings must be disabled. | Tab Compare is an AI-powered tool for comparing information across a user's tabs. For example, the feature can be offered to the user when multiple ta... |
| V-221563 | | Extensions that are approved for use must be allowlisted. | The allowlist should only contain organizationally approved extensions. This is to prevent a user from accidently allowlisitng a malicious extension. ... |
| V-221599 | | Chrome development tools must be disabled. | While the risk associated with browser development tools is more related to the proper design of a web application, a risk vector remains within the b... |
