Allow Google Chrome Frame to handle the following content types.

ChromeFrameContentTypes

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\ChromeFrameContentTypes

Mac/Linux preference name:

ChromeFrameContentTypes

Supported on:

• Google Chrome Frame (Windows) since version 8

Supported features:

Dynamic Policy Refresh: No

Description:

Allow Google Chrome Frame to handle the following content types.

Example value:

Windows:

Software\Policies\Google\Chrome\ChromeFrameContentTypes\1 = "text/xml" Software\Policies\Google\Chrome\ChromeFrameContentTypes\2 = "application/xml"

Linux:

["text/xml", "application/xml"]

Mac:

<array> <string>text/xml</string> <string>application/xml</string> </array>

Configure remote access options

RemoteAccessClientFirewallTraversal

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\RemoteAccessClientFirewallTraversal

Mac/Linux preference name:

RemoteAccessClientFirewallTraversal

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 14
• Google Chrome OS (Google Chrome OS) since version 0.14

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables usage of STUN and relay servers when connecting to a remote client. If this setting is enabled, then this machine can discover and connect to remote host machines even if they are separated by a firewall. If this setting is disabled and outgoing UDP connections are filtered by the firewall, then this machine can only connect to host machines within the local network.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

RemoteAccessHostFirewallTraversal

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\RemoteAccessHostFirewallTraversal

Mac/Linux preference name:

RemoteAccessHostFirewallTraversal

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 14
• Google Chrome OS (Google Chrome OS) since version 0.14

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables usage of STUN and relay servers when remote clients are trying to establish a connection to this machine. If this setting is enabled, then remote clients can discover and connect to this machines even if they are separated by a firewall. If this setting is disabled and outgoing UDP connections are filtered by the firewall, then this machine will only allow connections from client machines within the local network.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

Content Settings

DefaultCookiesSetting

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DefaultCookiesSetting

Mac/Linux preference name:

DefaultCookiesSetting

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 10
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set whether websites are allowed to set local data. Setting local data can be either allowed for all websites or denied for all websites.

• 1 = Allow all sites to set local data.
• 2 = Do not allow any site to set local data

Example value:

0x00000001 (Windows), 1 (Linux/Mac)

DefaultImagesSetting

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DefaultImagesSetting

Mac/Linux preference name:

DefaultImagesSetting

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 10
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set whether websites are allowed to display images. Displaying images can be either allowed for all websites or denied for all websites.

• 1 = Allow all sites to show all images
• 2 = Do not allow any site to show images

Example value:

0x00000001 (Windows), 1 (Linux/Mac)

DefaultJavaScriptSetting

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DefaultJavaScriptSetting

Mac/Linux preference name:

DefaultJavaScriptSetting

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 10
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set whether websites are allowed to run JavaScript. Running JavaScript can be either allowed for all websites or denied for all websites.

• 1 = Allow all sites to run JavaScript
• 2 = Do not allow any site to run JavaScript

Example value:

0x00000001 (Windows), 1 (Linux/Mac)

DefaultPluginsSetting

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DefaultPluginsSetting

Mac/Linux preference name:

DefaultPluginsSetting

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 10
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set whether websites are allowed to automatically run plugins. Automatically running plugins can be either allowed for all websites or denied for all websites.

• 1 = Allow all sites to automatically run plugins
• 2 = Block all plugins

Example value:

0x00000001 (Windows), 1 (Linux/Mac)

DefaultPopupsSetting

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DefaultPopupsSetting

Mac/Linux preference name:

DefaultPopupsSetting

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 10
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set whether websites are allowed to show pop-ups. Showing popups can be either allowed for all websites or denied for all websites.

• 1 = Allow all sites to show pop-ups
• 2 = Do not allow any site to show popups

Example value:

0x00000001 (Windows), 1 (Linux/Mac)

DefaultNotificationsSetting

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DefaultNotificationsSetting

Mac/Linux preference name:

DefaultNotificationsSetting

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 10

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set whether websites are allowed to display desktop notifications. Displaying desktop notifications can be allowed by default, denied by default or the user can be asked everytime a website wants to show desktop notifications.

• 1 = Allow sites to show desktop notifications
• 2 = Do not allow any site to show desktop notifications
• 3 = Ask every time a site wants to show desktop notifications

Example value:

0x00000002 (Windows), 2 (Linux/Mac)

DefaultGeolocationSetting

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DefaultGeolocationSetting

Mac/Linux preference name:

DefaultGeolocationSetting

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 10
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set whether websites are allowed to track the users' physical location. Tracking the users' physical location can be allowed by default, denied by default or the user can be asked everytime a website requests the pysical location.

• 1 = Allow sites to track the users' physical location
• 2 = Do not allow any site to track the users' physical location
• 3 = Ask whenever a site wants to track the users' physical location

Example value:

0x00000000 (Windows), 0 (Linux/Mac)

AutoSelectCertificateForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\AutoSelectCertificateForUrls

Mac/Linux preference name:

AutoSelectCertificateForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 15
• Google Chrome OS (Google Chrome OS) since version 0.15

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to specify a list of url patterns that specify sites for which Google Chrome should automatically select a client certificates, if the site requests a certificate.

Example value:

Windows:

Software\Policies\Google\Chrome\AutoSelectCertificateForUrls\1 = "{\"pattern\":\"https://www.example.com\",\"filter\":{\"ISSUER\":{\"CN\":\"certificate issuer name\"}}}"

Linux:

["{\"pattern\":\"https://www.example.com\",\"filter\":{\"ISSUER\":{\"CN\":\"certificate issuer name\"}}}"]

Mac:

<array> <string>{\"pattern\":\"https://www.example.com\",\"filter\":{\"ISSUER\":{\"CN\":\"certificate issuer name\"}}}</string> </array>

CookiesAllowedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\CookiesAllowedForUrls

Mac/Linux preference name:

CookiesAllowedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are allowed to set cookies.

Example value:

Windows:

Software\Policies\Google\Chrome\CookiesAllowedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\CookiesAllowedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

CookiesBlockedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\CookiesBlockedForUrls

Mac/Linux preference name:

CookiesBlockedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are not allowed to set cookies.

Example value:

Windows:

Software\Policies\Google\Chrome\CookiesBlockedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\CookiesBlockedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

CookiesSessionOnlyForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\CookiesSessionOnlyForUrls

Mac/Linux preference name:

CookiesSessionOnlyForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are allowed to set session only cookies.

Example value:

Windows:

Software\Policies\Google\Chrome\CookiesSessionOnlyForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\CookiesSessionOnlyForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

ImagesAllowedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\ImagesAllowedForUrls

Mac/Linux preference name:

ImagesAllowedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are allowed to display images.

Example value:

Windows:

Software\Policies\Google\Chrome\ImagesAllowedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\ImagesAllowedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

ImagesBlockedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\ImagesBlockedForUrls

Mac/Linux preference name:

ImagesBlockedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are not allowed to display images.

Example value:

Windows:

Software\Policies\Google\Chrome\ImagesBlockedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\ImagesBlockedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

JavaScriptAllowedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\JavaScriptAllowedForUrls

Mac/Linux preference name:

JavaScriptAllowedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are allowed to run JavaScript.

Example value:

Windows:

Software\Policies\Google\Chrome\JavaScriptAllowedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\JavaScriptAllowedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

JavaScriptBlockedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\JavaScriptBlockedForUrls

Mac/Linux preference name:

JavaScriptBlockedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are not allowed to run JavaScript.

Example value:

Windows:

Software\Policies\Google\Chrome\JavaScriptBlockedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\JavaScriptBlockedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

PluginsAllowedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\PluginsAllowedForUrls

Mac/Linux preference name:

PluginsAllowedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are allowed to run plugins.

Example value:

Windows:

Software\Policies\Google\Chrome\PluginsAllowedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\PluginsAllowedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

PluginsBlockedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\PluginsBlockedForUrls

Mac/Linux preference name:

PluginsBlockedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are not allowed to run plugins.

Example value:

Windows:

Software\Policies\Google\Chrome\PluginsBlockedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\PluginsBlockedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

PopupsAllowedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\PopupsAllowedForUrls

Mac/Linux preference name:

PopupsAllowedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are allowed to open popups.

Example value:

Windows:

Software\Policies\Google\Chrome\PopupsAllowedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\PopupsAllowedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

PopupsBlockedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\PopupsBlockedForUrls

Mac/Linux preference name:

PopupsBlockedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are not allowed to open popups.

Example value:

Windows:

Software\Policies\Google\Chrome\PopupsBlockedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\PopupsBlockedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

NotificationsAllowedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\NotificationsAllowedForUrls

Mac/Linux preference name:

NotificationsAllowedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 16
• Google Chrome OS (Google Chrome OS) since version 0.16

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are allowed to display notifications.

Example value:

Windows:

Software\Policies\Google\Chrome\NotificationsAllowedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\NotificationsAllowedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

NotificationsBlockedForUrls

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\NotificationsBlockedForUrls

Mac/Linux preference name:

NotificationsBlockedForUrls

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 16
• Google Chrome OS (Google Chrome OS) since version 0.16

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to set a list of url patterns that specify sites which are not allowed to display notifications.

Example value:

Windows:

Software\Policies\Google\Chrome\NotificationsBlockedForUrls\1 = "http://www.example.com" Software\Policies\Google\Chrome\NotificationsBlockedForUrls\2 = "[*.]example.edu"

Linux:

["http://www.example.com", "[*.]example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>[*.]example.edu</string> </array>

Default HTML renderer for Google Chrome Frame

ChromeFrameRendererSettings

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\ChromeFrameRendererSettings

Mac/Linux preference name:

ChromeFrameRendererSettings

Supported on:

• Google Chrome Frame (Windows) since version 8

Supported features:

Dynamic Policy Refresh: No

Description:

Allows you to configure the default HTML renderer when Google Chrome Frame is installed. The default setting is to allow the host browser do the rendering, but you can optionally override this and have Google Chrome Frame render HTML pages by default.

• 0 = Use the host browser by default
• 1 = Use Google Chrome Frame by default

Example value:

0x00000001 (Windows), 1 (Linux/Mac)

RenderInChromeFrameList

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\RenderInChromeFrameList

Mac/Linux preference name:

RenderInChromeFrameList

Supported on:

• Google Chrome Frame (Windows) since version 8

Supported features:

Dynamic Policy Refresh: No

Description:

Customize the list of URL patterns that should always be rendered by Google Chrome Frame. For example patterns see http://www.chromium.org/developers/how-tos/chrome-frame-getting-started.

Example value:

Windows:

Software\Policies\Google\Chrome\RenderInChromeFrameList\1 = "http://www.example.com" Software\Policies\Google\Chrome\RenderInChromeFrameList\2 = "http://www.example.edu"

Linux:

["http://www.example.com", "http://www.example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>http://www.example.edu</string> </array>

RenderInHostList

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\RenderInHostList

Mac/Linux preference name:

RenderInHostList

Supported on:

• Google Chrome Frame (Windows) since version 8

Supported features:

Dynamic Policy Refresh: No

Description:

Customize the list of URL patterns that should always be rendered by the host browser. For example patterns see http://www.chromium.org/developers/how-tos/chrome-frame-getting-started.

Example value:

Windows:

Software\Policies\Google\Chrome\RenderInHostList\1 = "http://www.example.com" Software\Policies\Google\Chrome\RenderInHostList\2 = "http://www.example.edu"

Linux:

["http://www.example.com", "http://www.example.edu"]

Mac:

<array> <string>http://www.example.com</string> <string>http://www.example.edu</string> </array>

Default search provider

DefaultSearchProviderEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DefaultSearchProviderEnabled

Mac/Linux preference name:

DefaultSearchProviderEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables the use of a default search provider. If you enable this setting, a default search is performed when the user types text in the omnibox that is not a URL. You can specify the default search provider to be used by setting the rest of the default search policies. If these are left empty, the user can choose the default provider. If you disable this setting, no search is performed when the user enters non-URL text in the omnibox. If you enable or disable this setting, users cannot change or override this setting in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

DefaultSearchProviderName

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\DefaultSearchProviderName

Mac/Linux preference name:

DefaultSearchProviderName

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies the name of the default search provider. If left empty, the host name specified by the search URL will be used.

Example value:

"My Intranet Search"

DefaultSearchProviderKeyword

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\DefaultSearchProviderKeyword

Mac/Linux preference name:

DefaultSearchProviderKeyword

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies the keyword, which is the shortcut used in the omnibox to trigger the search for this provider. Optional.

Example value:

"mis"

DefaultSearchProviderSearchURL

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\DefaultSearchProviderSearchURL

Mac/Linux preference name:

DefaultSearchProviderSearchURL

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies the URL of the search engine used when doing a default search. The URL should contain the string '{searchTerms}', which will be replaced at query time by the terms the user is searching for.

Example value:

"http://search.my.company/search?q={searchTerms}"

DefaultSearchProviderSuggestURL

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\DefaultSearchProviderSuggestURL

Mac/Linux preference name:

DefaultSearchProviderSuggestURL

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies the URL of the search engine used to provide search suggestions. The URL should contain the string '{searchTerms}', which will be replaced at query time by the text the user has entered so far. Optional.

Example value:

"http://search.my.company/suggest?q={searchTerms}"

DefaultSearchProviderInstantURL

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\DefaultSearchProviderInstantURL

Mac/Linux preference name:

DefaultSearchProviderInstantURL

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 10
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies the URL of the search engine used to provide instant results. The URL should contain the string '{searchTerms}', which will be replaced at query time by the text the user has entered so far. Optional.

Example value:

"http://search.my.company/suggest?q={searchTerms}"

DefaultSearchProviderIconURL

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\DefaultSearchProviderIconURL

Mac/Linux preference name:

DefaultSearchProviderIconURL

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies the favorite icon URL of the default search provider. Optional.

Example value:

"http://search.my.company/favicon.ico"

DefaultSearchProviderEncodings

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\DefaultSearchProviderEncodings

Mac/Linux preference name:

DefaultSearchProviderEncodings

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies the character encodings supported by the search provider. Encodings are code page names like UTF-8, GB2312, and ISO-8859-1. They are tried in the order provided. The default is UTF-8.

Example value:

Windows:

Software\Policies\Google\Chrome\DefaultSearchProviderEncodings\1 = "UTF-8" Software\Policies\Google\Chrome\DefaultSearchProviderEncodings\2 = "UTF-16" Software\Policies\Google\Chrome\DefaultSearchProviderEncodings\3 = "GB2312" Software\Policies\Google\Chrome\DefaultSearchProviderEncodings\4 = "ISO-8859-1"

Linux:

["UTF-8", "UTF-16", "GB2312", "ISO-8859-1"]

Mac:

<array> <string>UTF-8</string> <string>UTF-16</string> <string>GB2312</string> <string>ISO-8859-1</string> </array>

Extensions

ExtensionInstallBlacklist

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\ExtensionInstallBlacklist

Mac/Linux preference name:

ExtensionInstallBlacklist

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to specify which extensions the users can NOT install. Extensions already installed will be removed if blacklisted. A blacklist value of * means all extensions are blacklisted unless they are explicitly listed in the whitelist.

Example value:

Windows:

Software\Policies\Google\Chrome\ExtensionInstallBlacklist\1 = "extension_id1" Software\Policies\Google\Chrome\ExtensionInstallBlacklist\2 = "extension_id2"

Linux:

["extension_id1", "extension_id2"]

Mac:

<array> <string>extension_id1</string> <string>extension_id2</string> </array>

ExtensionInstallWhitelist

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\ExtensionInstallWhitelist

Mac/Linux preference name:

ExtensionInstallWhitelist

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to specify which extensions are not subject to the blacklist. A blacklist value of * means all extensions are blacklisted and users can only install extensions listed in the whitelist. By default, all extensions are whitelisted, but if all extensions have been blacklisted by policy, the whitelist can be used to override that policy.

Example value:

Windows:

Software\Policies\Google\Chrome\ExtensionInstallWhitelist\1 = "extension_id1" Software\Policies\Google\Chrome\ExtensionInstallWhitelist\2 = "extension_id2"

Linux:

["extension_id1", "extension_id2"]

Mac:

<array> <string>extension_id1</string> <string>extension_id2</string> </array>

ExtensionInstallForcelist

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\ExtensionInstallForcelist

Mac/Linux preference name:

ExtensionInstallForcelist

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 9
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to specify a list of extensions that will be installed silently, without user interaction. Each item of the list is a string, that contains an extension ID and an update URL delimited by a semicolon (;). For example: lcncmkcnkcdbbanbjakcencbaoegdjlp;https://clients2.google.com/service/update2/crx. For each item, Google Chrome will retrieve the extension specified by the ID from the specified URL and silently install it. The following pages explain how you can host extensions on your own server. About update URLs: http://code.google.com/chrome/extensions/autoupdate.html , about hosting extensions in general: http://code.google.com/chrome/extensions/hosting.html. Users will be unable to uninstall extensions that are specified by this policy. If you remove an extension from this list, then it will be automatically uninstalled by Google Chrome. Extensions that are blacklisted in 'ExtensionInstallBlacklist' and not whitelisted, cannot be force-installed by this policy.

Example value:

Windows:

Software\Policies\Google\Chrome\ExtensionInstallForcelist\1 = "lcncmkcnkcdbbanbjakcencbaoegdjlp;https://clients2.google.com/service/update2/crx"

Linux:

["lcncmkcnkcdbbanbjakcencbaoegdjlp;https://clients2.google.com/service/update2/crx"]

Mac:

<array> <string>lcncmkcnkcdbbanbjakcencbaoegdjlp;https://clients2.google.com/service/update2/crx</string> </array>

Home page

HomepageLocation

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\HomepageLocation

Mac/Linux preference name:

HomepageLocation

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Configures the default home page URL in Google Chrome and prevents users from changing it. The home page type can either be set to a URL you specify here or set to the New Tab Page. If you select the New Tab Page, then this policy is ignored. If you enable this setting, users cannot change their home page URL in Google Chrome, but they can still can choose the New Tab Page as their home page.

Example value:

"http://chromium.org"

HomepageIsNewTabPage

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\HomepageIsNewTabPage

Mac/Linux preference name:

HomepageIsNewTabPage

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Configures the type of the default home page in Google Chrome and prevents users from changing home page preferences. The home page can either be set to a URL you specify or set to the New Tab Page. If you enable this setting, the New Tab Page is always used for the home page, and the home page URL location is ignored. If you disable this setting, the user's homepage will never be the New Tab Page, unless its URL is set to 'chrome://newtab'. If you enable or disable this setting, users cannot change their homepage type in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

Password manager

PasswordManagerEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\PasswordManagerEnabled

Mac/Linux preference name:

PasswordManagerEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables saving passwords and using saved passwords in Google Chrome. If you enable this setting, users can have Google Chrome memorize passwords and provide them automatically the next time they log in to a site. If you disable this setting, users are not able to save passwords or use already saved passwords. If you enable or disable this setting, users cannot change or override this setting in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

PasswordManagerAllowShowPasswords

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\PasswordManagerAllowShowPasswords

Mac/Linux preference name:

PasswordManagerAllowShowPasswords

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Controls whether the user may show passwords in clear text in the password manager. If you disable this setting, the password manager does not allow showing stored passwords in clear text in the password manager window. If you enable or do not configure this setting, users can view their passwords in clear text in the password manager.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

Policies for HTTP Authentication

AuthSchemes

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\AuthSchemes

Mac/Linux preference name:

AuthSchemes

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 9
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: No

Description:

Specifies which HTTP Authentication schemes are supported by Google Chrome. Possible values are 'basic', 'digest', 'ntlm' and 'negotiate'. Separate multiple values with commas.

Example value:

"basic,digest,ntlm,negotiate"

DisableAuthNegotiateCnameLookup

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DisableAuthNegotiateCnameLookup

Mac/Linux preference name:

DisableAuthNegotiateCnameLookup

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 9
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: No

Description:

Specifies whether the generated Kerberos SPN is based on the canonical DNS name or the original name entered. If you enable this setting, CNAME lookup will be skipped and the server name will be used as entered. If you disable this setting, the canonical name of the server will be determined via CNAME lookup.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

EnableAuthNegotiatePort

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\EnableAuthNegotiatePort

Mac/Linux preference name:

EnableAuthNegotiatePort

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 9
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: No

Description:

Specifies whether the generated Kerberos SPN should include a non-standard port. If you enable this setting, and a non-standard port (i.e., a port other than 80 or 443) is entered, it will be included in the generated Kerberos SPN. If you disable this setting, the generated Kerberos SPN will not include a port in any case.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

AuthServerWhitelist

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\AuthServerWhitelist

Mac/Linux preference name:

AuthServerWhitelist

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 9
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: No

Description:

Specifies which servers should be whitelisted for integrated authentication. Integrated authentication is only enabled when Google Chrome receives an authentication challenge from a proxy or from a server which is in this permitted list. Separate multiple server names with commas. Wildcards (*) are allowed.

Example value:

"*example.com,foobar.com,*baz"

AuthNegotiateDelegateWhitelist

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\AuthNegotiateDelegateWhitelist

Mac/Linux preference name:

AuthNegotiateDelegateWhitelist

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 9
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: No

Description:

Servers that Google Chrome may delegate to.

Example value:

"foobar.example.com"

GSSAPILibraryName

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\GSSAPILibraryName

Mac/Linux preference name:

GSSAPILibraryName

Supported on:

• Google Chrome (Linux) since version 9
• Google Chrome (Mac) since version 9

Supported features:

Dynamic Policy Refresh: No

Description:

Specifies which GSSAPI library to use for HTTP Authentication. You can set either just a library name, or a full path. If no setting is provided, Google Chrome will fall back to using a default library name.

Example value:

"libgssapi_krb5.so.2"

AllowCrossOriginAuthPrompt

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\AllowCrossOriginAuthPrompt

Mac/Linux preference name:

AllowCrossOriginAuthPrompt

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 13

Supported features:

Dynamic Policy Refresh: Yes

Description:

Controls whether third-party sub-content on a page is allowed to pop-up an HTTP Basic Auth dialog box. Typically this is disabled as a phishing defense.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

Proxy server

ProxyMode

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\ProxyMode

Mac/Linux preference name:

ProxyMode

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 10

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to specify the proxy server used by Google Chrome and prevents users from changing proxy settings. If you choose to never use a proxy server and always connect directly, all other options are ignored. If you choose to use system proxy settings or auto detect the proxy server, all other options are ignored. If you choose fixed server proxy mode, you can specify further options in 'Address or URL of proxy server' and 'Comma-separated list of proxy bypass rules'. If you choose to use a .pac proxy script, you must specify the URL to the script in 'URL to a proxy .pac file'. For detailed examples, visit: http://www.chromium.org/developers/design-documents/network-settings#TOC-Command-line-options-for-proxy-sett If you enable this setting, Google Chrome ignores all proxy-related options specified from the command line.

• "direct" = Never use a proxy
• "auto_detect" = Auto detect proxy settings
• "pac_script" = Use a .pac proxy script
• "fixed_servers" = Use fixed proxy servers
• "system" = Use system proxy settings

Example value:

"direct"

ProxyServerMode (deprecated)

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\ProxyServerMode

Mac/Linux preference name:

ProxyServerMode

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8

Supported features:

Dynamic Policy Refresh: Yes

Description:

This policy is deprecated, use ProxyMode instead. Allows you to specify the proxy server used by Google Chrome and prevents users from changing proxy settings. If you choose to never use a proxy server and always connect directly, all other options are ignored. If you choose to use system proxy settings or auto detect the proxy server, all other options are ignored. If you choose manual proxy settings, you can specify further options in 'Address or URL of proxy server', 'URL to a proxy .pac file' and 'Comma-separated list of proxy bypass rules'. For detailed examples, visit: http://www.chromium.org/developers/design-documents/network-settings#TOC-Command-line-options-for-proxy-sett If you enable this setting, Google Chrome ignores all proxy-related options specified from the command line.

• 0 = Never use a proxy
• 1 = Auto detect proxy settings
• 2 = Manually specify proxy settings
• 3 = Use system proxy settings

Example value:

0x00000002 (Windows), 2 (Linux/Mac)

ProxyServer

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\ProxyServer

Mac/Linux preference name:

ProxyServer

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8

Supported features:

Dynamic Policy Refresh: Yes

Description:

You can specify the URL of the proxy server here. This policy only takes effect if you have selected manual proxy settings at 'Choose how to specify proxy server settings'. For more options and detailed examples, visit: http://www.chromium.org/developers/design-documents/network-settings#TOC-Command-line-options-for-proxy-sett

Example value:

"123.123.123.123:8080"

ProxyPacUrl

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\ProxyPacUrl

Mac/Linux preference name:

ProxyPacUrl

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8

Supported features:

Dynamic Policy Refresh: Yes

Description:

You can specify a URL to a proxy .pac file here. This policy only takes effect if you have selected manual proxy settings at 'Choose how to specify proxy server settings'. For detailed examples, visit: http://www.chromium.org/developers/design-documents/network-settings#TOC-Command-line-options-for-proxy-sett

Example value:

"http://internal.site/example.pac"

ProxyBypassList

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\ProxyBypassList

Mac/Linux preference name:

ProxyBypassList

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8

Supported features:

Dynamic Policy Refresh: Yes

Description:

Google Chrome will bypass any proxy for the list of hosts given here. This policy only takes effect if you have selected manual proxy settings at 'Choose how to specify proxy server settings'. For more detailed examples, visit: http://www.chromium.org/developers/design-documents/network-settings#TOC-Command-line-options-for-proxy-sett

Example value:

"http://www.example1.com,http://www.example2.com,http://internalsite/"

Startup pages

RestoreOnStartup

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\RestoreOnStartup

Mac/Linux preference name:

RestoreOnStartup

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows you to specify the behavior on startup. If you choose 'Open home page' the home page will always be opened when you start Google Chrome. If you choose 'Reopen the URLs that were open last', the URLs that were open last time Google Chrome was closed will be reopened. If you choose 'Open a list of URLs', the list of 'URLs to open on startup' will be opened when a user starts Google Chrome. If you enable this setting, users cannot change or override it in Google Chrome. Disabling this setting is equvalent to leaving it not configured. The user will still be able to change it in Google Chrome.

• 0 = Open home page
• 1 = Reopen the URLs that were open last
• 4 = Open a list of URLs

Example value:

0x00000004 (Windows), 4 (Linux/Mac)

RestoreOnStartupURLs

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\RestoreOnStartupURLs

Mac/Linux preference name:

RestoreOnStartupURLs

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

If 'Open a list of URLs' is selected as the startup action, this allows you to specify the list of URLs that are opened.

Example value:

Windows:

Software\Policies\Google\Chrome\RestoreOnStartupURLs\1 = "http://example.com" Software\Policies\Google\Chrome\RestoreOnStartupURLs\2 = "http://chromium.org"

Linux:

["http://example.com", "http://chromium.org"]

Mac:

<array> <string>http://example.com</string> <string>http://chromium.org</string> </array>

AllowFileSelectionDialogs

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\AllowFileSelectionDialogs

Mac/Linux preference name:

AllowFileSelectionDialogs

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 12

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows access to local files on the machine by allowing Google Chrome to display file selection dialogs. If you enable this setting, users can open file selection dialogs as normal. If you disable this setting, whenever the user perfoms an action which would provoke a file selection dialog (like importing bookmarks, uploading files, saving links, etc.) a message is displayed instead and the user is assumed to have clicked Cancel on the file selection dialog. If this setting is not set, users can open file selection dialogs as normal.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

AllowOutdatedPlugins

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\AllowOutdatedPlugins

Mac/Linux preference name:

AllowOutdatedPlugins

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 12
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows Google Chrome to run plugins that are outdated. If you enable this setting, outdated plugins are used as normal plugins. If you disable this setting, outdated plugins will not be used and users will not be asked for permission to run them. If this setting is not set, users will be asked for permission to run outdated plugins.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

AlternateErrorPagesEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\AlternateErrorPagesEnabled

Mac/Linux preference name:

AlternateErrorPagesEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables the use of alternate error pages that are built into Google Chrome (such as 'page not found') and prevents users from changing this setting. If you enable this setting, alternate error pages are used. If you disable this setting, alternate error pages are never used. If you enable or disable this setting, users cannot change or override this setting in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

AlwaysAuthorizePlugins

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\AlwaysAuthorizePlugins

Mac/Linux preference name:

AlwaysAuthorizePlugins

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 13
• Google Chrome OS (Google Chrome OS) since version 0.13

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows Google Chrome to run plugins that require authorization. If you enable this setting, plugins that are not outdated always run. If this setting is disabled or not set, users will be asked for permission to run plugins that require authorization. These are plugins that can compromise security.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

ApplicationLocaleValue

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\ApplicationLocaleValue

Mac/Linux preference name:

ApplicationLocaleValue

Supported on:

• Google Chrome (Windows) since version 8

Supported features:

Dynamic Policy Refresh: No

Description:

Configures the application locale in Google Chrome and prevents users from changing the locale. If you enable this setting, Google Chrome uses the specified locale. If the configured locale is not supported, 'en-US' is used instead. If this setting is disabled or not configured, Google Chrome uses either the user-specified preferred locale (if configured), the system locale or the fallback locale 'en-US'.

Example value:

"en"

AutoFillEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\AutoFillEnabled

Mac/Linux preference name:

AutoFillEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables Google Chrome's AutoFill feature and allows users to auto complete web forms using previously stored information such as address or credit card information. If you disable this setting, AutoFill will be inaccessible to users. If you enable this setting or do not configure a value, AutoFill will remain under the control of the user. This will allow them to configure AutoFill profiles and to switch AutoFill on or off at their own discretion.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

BlockThirdPartyCookies

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\BlockThirdPartyCookies

Mac/Linux preference name:

BlockThirdPartyCookies

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 10
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Blocks third party cookies. Enabling this setting prevents cookies from being set by web page elements that are not from the domain that is in the browser's address bar. Disabling this setting allows cookies to be set by web page elements that are not from the domain that is in the browser's address bar and prevents users from changing this setting.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

BookmarkBarEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\BookmarkBarEnabled

Mac/Linux preference name:

BookmarkBarEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 12
• Google Chrome OS (Google Chrome OS) since version 0.12

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables the bookmark bar on Google Chrome. If you enable this setting, Google Chrome will show a bookmark bar. If you disable this setting, users will never see the bookmark bar. If you enable or disable this setting, users cannot change or override it in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

ChromeOsLockOnIdleSuspend

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\ChromeOsLockOnIdleSuspend

Mac/Linux preference name:

ChromeOsLockOnIdleSuspend

Supported on:

• Google Chrome OS (Google Chrome OS) since version 0.9

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enable lock when ChromeOS devices become idle or suspended. If you enable this setting, users will be asked for a password to unlock ChromeOS devices from sleep. If you disable this setting, users will not be asked for a password to wake ChromeOS devices from sleep. If you enable or disable this setting, users cannot change or override this setting in Google Chrome OS.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

ChromeOsReleaseChannel

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\ChromeOsReleaseChannel

Mac/Linux preference name:

ChromeOsReleaseChannel

Supported on:

• Google Chrome OS (Google Chrome OS) since version 1.0

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies the release channel that this device should be locked to. This policy is a work in progress; currently, the user can still change the release channel even if it's specified by the policy.

• "stable-channel" = Stable channel
• "beta-channel" = Beta channel
• "dev-channel" = Dev channel (may be unstable)

Example value:

"stable-channel"

ClearSiteDataOnExit

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\ClearSiteDataOnExit

Mac/Linux preference name:

ClearSiteDataOnExit

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 1.0

Supported features:

Dynamic Policy Refresh: Yes

Description:

This policy is an override for the "Clear cookies and other site data when I close my browser" content settings option. When set to true Google Chrome will delete all locally stored data from the browser when it is shut down.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

DefaultBrowserSettingEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DefaultBrowserSettingEnabled

Mac/Linux preference name:

DefaultBrowserSettingEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Configures the default browser checks in Google Chrome and prevents users from changing them. If you enable this setting, Google Chrome will always check on startup whether it is the default browser and automatically register itself if possible. If this setting is disabled, Google Chrome will never check if it is the default browser and will disable user controls for setting this option. If this setting is not set, Google Chrome will allow the user to control whether it is the default browser and whether user notifications should be shown when it isn't.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

DeveloperToolsDisabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DeveloperToolsDisabled

Mac/Linux preference name:

DeveloperToolsDisabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 9
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Disables the Developer Tools and the JavaScript console. If you enable this setting, the Developer Tools can not be accessed and web-site elements can not be inspected anymore. Any keyboard shortcuts and any menu or context menu entries to open the Developer Tools or the JavaScript Console will be disabled.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

DevicePolicyRefreshRate

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DevicePolicyRefreshRate

Mac/Linux preference name:

DevicePolicyRefreshRate

Supported on:

• Google Chrome OS (Google Chrome OS) since version 1.0

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies the period in milliseconds at which the device management service is queried for device policy information. Setting this policy overrides the default value of 3 hours. Valid values for this policy are in the range from 1800000 (30 minutes) to 86400000 (1 day). Any values not in this range will be clamped to the respective boundary.

Example value:

0x0036ee80 (Windows), 3600000 (Linux/Mac)

Disable3DAPIs

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\Disable3DAPIs

Mac/Linux preference name:

Disable3DAPIs

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 9
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: No

Description:

Disable support for 3D graphics APIs. Enabling this setting prevents web pages from accessing the graphics processing unit (GPU). Specifically, web pages can not access the WebGL API and plugins can not use the Pepper 3D API. Disabling this setting potentially allows web pages to use the WebGL API and plugins to use the Pepper 3D API. The default settings of the browser may still require command line arguments to be passed in order to use these APIs.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

DisablePluginFinder

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DisablePluginFinder

Mac/Linux preference name:

DisablePluginFinder

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

If you set this setting to True the automatic search and installation of missing plugins will be disabled in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

DisableSpdy

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DisableSpdy

Mac/Linux preference name:

DisableSpdy

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Disables use of the SPDY protocol in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

DisabledPlugins

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\DisabledPlugins

Mac/Linux preference name:

DisabledPlugins

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies a list of plugins that are disabled in Google Chrome and prevents users from changing this setting. The wildcard characters '*' and '?' can be used to match sequences of arbitrary characters. '*' matches an arbitrary number of characters while '?' specifies an optional single character, i.e. matches zero or one characters. The escape character is '\', so to match actual '*', '?', or '\' characters, you can put a '\' in front of them. If you enable this setting, the specified list of plugins is never used in Google Chrome. The plugins are marked as disabled in 'about:plugins' and users cannot enable them. Note that this policy can be overriden by EnabledPlugins and DisabledPluginsExceptions.

Example value:

Windows:

Software\Policies\Google\Chrome\DisabledPlugins\1 = "Java" Software\Policies\Google\Chrome\DisabledPlugins\2 = "Shockwave Flash" Software\Policies\Google\Chrome\DisabledPlugins\3 = "Chrome PDF Viewer"

Linux:

["Java", "Shockwave Flash", "Chrome PDF Viewer"]

Mac:

<array> <string>Java</string> <string>Shockwave Flash</string> <string>Chrome PDF Viewer</string> </array>

DisabledPluginsExceptions

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\DisabledPluginsExceptions

Mac/Linux preference name:

DisabledPluginsExceptions

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies a list of plugins that user can enable or disable in Google Chrome. The wildcard characters '*' and '?' can be used to match sequences of arbitrary characters. '*' matches an arbitrary number of characters while '?' specifies an optional single character, i.e. matches zero or one characters. The escape character is '\', so to match actual '*', '?', or '\' characters, you can put a '\' in front of them. If you enable this setting, the specified list of plugins can be used in Google Chrome. Users can enable or disable them in 'about:plugins', even if the plugin also matches a pattern in DisabledPlugins. Users can also enable and disable plugins that don't match any patterns in DisabledPlugins, DisabledPluginsExceptions and EnabledPlugins.

Example value:

Windows:

Software\Policies\Google\Chrome\DisabledPluginsExceptions\1 = "Java" Software\Policies\Google\Chrome\DisabledPluginsExceptions\2 = "Shockwave Flash" Software\Policies\Google\Chrome\DisabledPluginsExceptions\3 = "Chrome PDF Viewer"

Linux:

["Java", "Shockwave Flash", "Chrome PDF Viewer"]

Mac:

<array> <string>Java</string> <string>Shockwave Flash</string> <string>Chrome PDF Viewer</string> </array>

DisabledSchemes

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\DisabledSchemes

Mac/Linux preference name:

DisabledSchemes

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 12
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Disables the listed protocol schemes in Google Chrome. URLs using a scheme from this list will not load and can not be navigated to.

Example value:

Windows:

Software\Policies\Google\Chrome\DisabledSchemes\1 = "file" Software\Policies\Google\Chrome\DisabledSchemes\2 = "mailto"

Linux:

["file", "mailto"]

Mac:

<array> <string>file</string> <string>mailto</string> </array>

DiskCacheDir

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\DiskCacheDir

Mac/Linux preference name:

DiskCacheDir

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 13

Supported features:

Dynamic Policy Refresh: No

Description:

Configures the directory that Google Chrome will use for storing cached files on the disk. If you set this policy, Google Chrome will use the provided directory regardless whether the user has specified the '--disk-cache-dir' flag or not.

Example value:

"${user_home}/Chrome_cache"

DnsPrefetchingEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\DnsPrefetchingEnabled

Mac/Linux preference name:

DnsPrefetchingEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables network prediction in Google Chrome and prevents users from changing this setting. If you enable or disable this setting, users cannot change or override this setting in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

DownloadDirectory

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\DownloadDirectory

Mac/Linux preference name:

DownloadDirectory

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Configures the directory that Google Chrome will use for downloading files. If you set this policy, Google Chrome will use the provided directory regardless whether the user has specified one or enabled the flag to be prompted for download location every time.

Example value:

"/home/${user_name}/Downloads"

EditBookmarksEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\EditBookmarksEnabled

Mac/Linux preference name:

EditBookmarksEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 12
• Google Chrome OS (Google Chrome OS) since version 0.12

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables or disables editing bookmarks in Google Chrome. If you enable this setting, bookmarks can be added, removed or modified. This is the default. If you disable this setting, bookmarks can not be added, removed or modified. Existing bookmarks are still available.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

EnabledPlugins

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\EnabledPlugins

Mac/Linux preference name:

EnabledPlugins

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies a list of plugins that are enabled in Google Chrome and prevents users from changing this setting. The wildcard characters '*' and '?' can be used to match sequences of arbitrary characters. '*' matches an arbitrary number of characters while '?' specifies an optional single character, i.e. matches zero or one characters. The escape character is '\', so to match actual '*', '?', or '\' characters, you can put a '\' in front of them. The specified list of plugins is always used in Google Chrome if they are installed. The plugins are marked as enabled in 'about:plugins' and users cannot disable them. Note that this policy overrides both DisabledPlugins and DisabledPluginsExceptions.

Example value:

Windows:

Software\Policies\Google\Chrome\EnabledPlugins\1 = "Java" Software\Policies\Google\Chrome\EnabledPlugins\2 = "Shockwave Flash" Software\Policies\Google\Chrome\EnabledPlugins\3 = "Chrome PDF Viewer"

Linux:

["Java", "Shockwave Flash", "Chrome PDF Viewer"]

Mac:

<array> <string>Java</string> <string>Shockwave Flash</string> <string>Chrome PDF Viewer</string> </array>

GCFUserDataDir

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\GCFUserDataDir

Mac/Linux preference name:

GCFUserDataDir

Supported on:

• Google Chrome Frame (Windows) since version 12

Supported features:

Dynamic Policy Refresh: No

Description:

Configures the directory that Google Chrome Frame will use for storing user data. If you set this policy, Google Chrome Frame will use the provided directory.

Example value:

"${user_home}/Chrome Frame"

HideWebStorePromo

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\HideWebStorePromo

Mac/Linux preference name:

HideWebStorePromo

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 15
• Google Chrome OS (Google Chrome OS) since version 0.15

Supported features:

Dynamic Policy Refresh: No

Description:

When set to True, promotions for Chrome Web Store apps will not appear on the new tab page.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

ImportBookmarks

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\ImportBookmarks

Mac/Linux preference name:

ImportBookmarks

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 15

Supported features:

Dynamic Policy Refresh: Yes

Description:

This policy forces bookmarks to be imported from the current default browser if enabled. If disabled, no bookmarks are imported. If it is not configured, the default behaviour is used. If enabled, this policy also affects the import dialog.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

ImportHistory

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\ImportHistory

Mac/Linux preference name:

ImportHistory

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 15

Supported features:

Dynamic Policy Refresh: Yes

Description:

This policy forces the browsing history to be imported from the current default browser if enabled. If disabled, no browsing history is imported. If it is not configured, the default behaviour is used. If enabled, this policy also affects the import dialog.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

ImportHomepage

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\ImportHomepage

Mac/Linux preference name:

ImportHomepage

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 15

Supported features:

Dynamic Policy Refresh: Yes

Description:

This policy forces the home page to be imported from the current default browser if enabled. If disabled, the home page is not imported. If it is not configured, the default behaviour is used.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

ImportSavedPasswords

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\ImportSavedPasswords

Mac/Linux preference name:

ImportSavedPasswords

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 15

Supported features:

Dynamic Policy Refresh: Yes

Description:

This policy forces the saved passwords to be imported from the previous default browser if enabled. If disabled, the saved passwords are not imported. If it is not configured, the default behaviour is used. If enabled, this policy also affects the import dialog.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

ImportSearchEngine

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\ImportSearchEngine

Mac/Linux preference name:

ImportSearchEngine

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 15

Supported features:

Dynamic Policy Refresh: Yes

Description:

This policy forces search engines to be imported from the current default browser if enabled. If disabled, the default search engine is not imported. If it is not configured, the default behaviour is used. If enabled, this policy also affects the import dialog.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

IncognitoEnabled (deprecated)

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\IncognitoEnabled

Mac/Linux preference name:

IncognitoEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

This policy is deprecated. Please, use IncognitoModeAvailability instead. Enables Incognito mode in Google Chrome. If this setting is enabled or not configured, users can open web pages in incognito mode. If this setting is disabled, users cannot open web pages in incognito mode.

Example value:

0x00000000 (Windows), false (Linux), <false /> (Mac)

IncognitoModeAvailability

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\IncognitoModeAvailability

Mac/Linux preference name:

IncognitoModeAvailability

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 14
• Google Chrome OS (Google Chrome OS) since version 0.14

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies whether the user may open pages in Incognito mode in Google Chrome. If 'Enabled' is selected, pages may be opened in Incognito mode. If 'Disabled' is selected, pages may not be opened in Incognito mode. If 'Forced' is selected, pages may be opened ONLY in Incognito mode.

• 0 = Incognito mode available.
• 1 = Incognito mode disabled.
• 2 = Incognito mode forced.

Example value:

0x00000001 (Windows), 1 (Linux/Mac)

InstantEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\InstantEnabled

Mac/Linux preference name:

InstantEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 11
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables Google Chrome's Instant feature and prevents users from changing this setting. If you enable this setting, Google Chrome Instant is enabled. If you disable this setting, Google Chrome Instant is disabled. If you enable or disable this setting, users cannot change or override this setting.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

JavascriptEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\JavascriptEnabled

Mac/Linux preference name:

JavascriptEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: No

Description:

Enables JavaScript in Google Chrome and prevents users from changing this setting. If this setting is enabled or not configured, web pages can use JavaScript. If this setting is disabled, web pages cannot use JavaScript.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

MaxConnectionsPerProxy

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\MaxConnectionsPerProxy

Mac/Linux preference name:

MaxConnectionsPerProxy

Supported on:

• Google Chrome OS (Google Chrome OS) since version 1.0
• Google Chrome (Linux, Mac, Windows) since version 14

Supported features:

Dynamic Policy Refresh: No

Description:

Specifies the maximal number of simultanious connections to the proxy server. Some proxy servers can not handle high number of concurrent connections per client and this can be solved by setting this policy to a lower value. The value of this policy should be lower than 100 and higher than 6 and the default value is 32. Some web apps are known to consume many connections with hanging GETs, so lowering below 32 may lead to browser networking hangs if too many such web apps are open. Lower below the default at your own risk.

Example value:

0x00000020 (Windows), 32 (Linux/Mac)

MetricsReportingEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\MetricsReportingEnabled

Mac/Linux preference name:

MetricsReportingEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: No

Description:

Enables anonymous reporting of usage and crash-related data about Google Chrome to Google and prevents users from changing this setting. If you enable this setting, anonymous reporting of usage and crash-related data is sent to Google. If you disable this setting, anonymous reporting of usage and crash-related data is never sent to Google. If you enable or disable this setting, users cannot change or override this setting in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

PolicyRefreshRate

Data type:

Integer (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\PolicyRefreshRate

Mac/Linux preference name:

PolicyRefreshRate

Supported on:

• Google Chrome OS (Google Chrome OS) since version 1.0

Supported features:

Dynamic Policy Refresh: Yes

Description:

Specifies the period in milliseconds at which the device management service is queried for user policy information. Setting this policy overrides the default value of 3 hours. Valid values for this policy are in the range from 1800000 (30 minutes) to 86400000 (1 day). Any values not in this range will be clamped to the respective boundary.

Example value:

0x0036ee80 (Windows), 3600000 (Linux/Mac)

PrintingEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\PrintingEnabled

Mac/Linux preference name:

PrintingEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables printing in Google Chrome and prevents users from changing this setting. If this setting is enabled or not configured, users can print. If this setting is disabled, users cannot print from Google Chrome. Printing is disabled in the wrench menu, extensions, JavaScript applications, etc. It is still possible to print from plugins that bypass Google Chrome while printing. For example certain Flash applications has the print option in their context menu, and that will not be disabled.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

SafeBrowsingEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\SafeBrowsingEnabled

Mac/Linux preference name:

SafeBrowsingEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: No

Description:

Enables Google Chrome's Safe Browsing feature and prevents users from changing this setting. If you enable this setting, Safe Browsing is always active. If you disable this setting, Safe Browsing is never active. If you enable or disable this setting, users cannot change or override this setting in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

SavingBrowserHistoryDisabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\SavingBrowserHistoryDisabled

Mac/Linux preference name:

SavingBrowserHistoryDisabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Disables saving browser history in Google Chrome and prevents users from changing this setting. If this setting is enabled, browsing history is not saved. If this setting is disabled or not configured, browsing history is saved.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

SearchSuggestEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\SearchSuggestEnabled

Mac/Linux preference name:

SearchSuggestEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables search suggestions in Google Chrome's Omnibox and prevents users from changing this setting. If you enable this setting, search suggestions are used. If you disable this setting, search suggestions are never used. If you enable or disable this setting, users cannot change or override this setting in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

ShowHomeButton

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\ShowHomeButton

Mac/Linux preference name:

ShowHomeButton

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Shows the Home button on Google Chrome's toolbar. If you enable this setting, the Home button is always shown. If you disable this setting, the Home button is never shown. If you enable or disable this setting, users cannot change or override this setting in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

SyncDisabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\SyncDisabled

Mac/Linux preference name:

SyncDisabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 8
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Disables data synchronization in Google Chrome using Google-hosted synchronization services and prevents users from changing this setting. If you enable this setting, users cannot change or override this setting in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

TranslateEnabled

Data type:

Boolean (REG_DWORD)

Windows registry location:

Software\Policies\Google\Chrome\TranslateEnabled

Mac/Linux preference name:

TranslateEnabled

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 12
• Google Chrome OS (Google Chrome OS) since version 0.11

Supported features:

Dynamic Policy Refresh: Yes

Description:

Enables the integrated Google Translate service on Google Chrome. If you enable this setting, Google Chrome will show an integrated toolbar offering to translate the page for the user, when appropriate. If you disable this setting, users will never see the translation bar. If you enable or disable this setting, users cannot change or override this setting in Google Chrome.

Example value:

0x00000001 (Windows), true (Linux), <true /> (Mac)

URLBlacklist

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\URLBlacklist

Mac/Linux preference name:

URLBlacklist

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 15
• Google Chrome OS (Google Chrome OS) since version 0.15

Supported features:

Dynamic Policy Refresh: Yes

Description:

Blocks access to the listed URLs. This policy prevents the user from loading web pages from blacklisted URLs. A URL has the format 'scheme://host:port/path'. The optional scheme can be http, https or ftp. Only this scheme will be blocked; if none is specified, all schemes are blocked. The host can be a hostname or an IP address. Subdomains of a hostname will also be blocked. To prevent blocking subdomains, include a '.' before the hostname. The special hostname '*' will block all domains. The optional port is a valid port number from 1 to 65535. If none is specified, all ports are blocked. If the optional path is specified, only paths with that prefix will be blocked. Exceptions can be defined in the URL whitelist policy. These policies are limited to 100 entries; subsequent entries will be ignored.

Example value:

Windows:

Software\Policies\Google\Chrome\URLBlacklist\1 = "example.com" Software\Policies\Google\Chrome\URLBlacklist\2 = "https://ssl.server.com" Software\Policies\Google\Chrome\URLBlacklist\3 = "hosting.com/bad_path" Software\Policies\Google\Chrome\URLBlacklist\4 = "http://server:8080/path" Software\Policies\Google\Chrome\URLBlacklist\5 = ".exact.hostname.com" Software\Policies\Google\Chrome\URLBlacklist\6 = "*"

Linux:

["example.com", "https://ssl.server.com", "hosting.com/bad_path", "http://server:8080/path", ".exact.hostname.com", "*"]

Mac:

<array> <string>example.com</string> <string>https://ssl.server.com</string> <string>hosting.com/bad_path</string> <string>http://server:8080/path</string> <string>.exact.hostname.com</string> <string>*</string> </array>

URLWhitelist

Data type:

List of strings

Windows registry location:

Software\Policies\Google\Chrome\URLWhitelist

Mac/Linux preference name:

URLWhitelist

Supported on:

• Google Chrome (Linux, Mac, Windows) since version 15
• Google Chrome OS (Google Chrome OS) since version 0.15

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows access to the listed URLs, as exceptions to the URL blacklist. See the description of the URL blacklist policy for the format of entries of this list. This policy can be used to open exceptions to restrictive blacklists. For example, '*' can be blacklisted to block all requests, and this policy can be used to allow access to a limited list of URLs. It can be used to open exceptions to certain schemes, subdomains of other domains, ports, or specific paths. The most specific filter will determine if a URL is blocked or allowed. The whitelist takes precedence over the blacklist. This policy is limited to 100 entries; subsequent entries will be ignored.

Example value:

Windows:

Software\Policies\Google\Chrome\URLWhitelist\1 = "example.com" Software\Policies\Google\Chrome\URLWhitelist\2 = "https://ssl.server.com" Software\Policies\Google\Chrome\URLWhitelist\3 = "hosting.com/bad_path" Software\Policies\Google\Chrome\URLWhitelist\4 = "http://server:8080/path" Software\Policies\Google\Chrome\URLWhitelist\5 = ".exact.hostname.com"

Linux:

["example.com", "https://ssl.server.com", "hosting.com/bad_path", "http://server:8080/path", ".exact.hostname.com"]

Mac:

<array> <string>example.com</string> <string>https://ssl.server.com</string> <string>hosting.com/bad_path</string> <string>http://server:8080/path</string> <string>.exact.hostname.com</string> </array>

UserDataDir

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\UserDataDir

Mac/Linux preference name:

UserDataDir

Supported on:

• Google Chrome (Windows) since version 11
• Google Chrome (Mac) since version 11

Supported features:

Dynamic Policy Refresh: No

Description:

Configures the directory that Google Chrome will use for storing user data. If you set this policy, Google Chrome will use the provided directory regardless whether the user has specified the '--user-data-dir' flag or not.

Example value:

"${users}/${user_name}/Chrome"

UserNetworkConfiguration

Data type:

String (REG_SZ)

Windows registry location:

Software\Policies\Google\Chrome\UserNetworkConfiguration

Mac/Linux preference name:

UserNetworkConfiguration

Supported on:

• Google Chrome OS (Google Chrome OS) since version 0.16

Supported features:

Dynamic Policy Refresh: Yes

Description:

Allows pushing network configuration to be applied per-user to a Google Chrome OS device. The network configuration is a JSON-formatted string as defined by the Open Network Configuration format described at https://sites.google.com/a/chromium.org/dev/chromium-os/chromiumos-design-docs/open-network-configuration

Example value:

"{ "NetworkConfigurations": [ { "GUID": "{4b224dfd-6849-7a63-5e394343244ae9c9}", "Name": "my WiFi", "Type": "WiFi", "WiFi": { "SSID": "my WiFi", "HiddenSSID": false, "Security": "None", "AutoConnect": true } } ] }"