Removed policies
152 Group Policy settings under Removed policies. Browse the sub-folders and settings below.
Settings
- Allow access to a list of URLs
- Allow background tabs freeze
- Allow certificates issued by local trust anchors without subjectAlternativeName extension
- Allow insecure algorithms in integrity checks on extension updates and installs
- Allow key generation on these sites
- Allow legacy TLS/DTLS downgrade in WebRTC
- Allow media autoplay on a allowlist of URL patterns
- Allow modern buffer allocation for Graphics3D APIs PPAPI plugin.
- Allow Pepper to use a new decoder for hardware accelerated video decoding.
- Allow running plugins that are outdated
- Allow SHA-1 signed certificates issued by local trust anchors
- Allow sites to simultaneously navigate and open pop-ups
- Allow the File Handling API on these web apps
- Allow the Flash plugin on these sites
- Allow the listed sites to make requests to more-private network endpoints in an insecure manner.
- Allow users to opt in to Safe Browsing extended reporting
- Allow users to show passwords in Password Manager (deprecated)
- Allow using Google Assistant on the web, e.g. to enable changing passwords automatically
- Allow using the deprecated U2F Security Key API
- Allow WebDriver to Override Incompatible Policies
- Allows a page to perform synchronous XHR requests during page dismissal.
- Allows a page to show pop-ups during its unloading
- Allows enabling the feature NewBaseUrlInheritanceBehavior
- Allows enabling throttling of non-visible, cross-origin iframes
- Allows the AppCache feature to be re-enabled even if it is off by default.
- Always runs plugins that require authorization (deprecated)
- Authentication server allowlist
- Block access to a list of URLs
- Block key generation on these sites
- Block the File Handling API on these web apps
- Block the Flash plugin on these sites
- Block truncated cookies
- CECPQ2 post-quantum key-agreement enabled for TLS
- Check RSA key usage for server certificates issued by local trust anchors
- Choose whether the Privacy Sandbox Fingerprinting Protection feature is to be enabled in Incognito mode.
- Choose whether the Privacy Sandbox IP Protection feature should be enabled.
- Clear site data on browser shutdown (deprecated)
- Configure extension installation allowlist
- Configure extension installation blocklist
- Configure native messaging allowlist
- Configure native messaging blocklist
- Configure the list of domains on which Safe Browsing will not trigger warnings.
- Configure the TalkGadget prefix for remote access hosts
- Control how Chrome Cleanup reports data to Google
- Control Javascript setTimeout() function minimum timeout.
- Control Manifest v2 extension availability
- Control new behavior for the cancel dialog produced by the beforeunload event
- Control the nesting threshold before which Javascript setTimeout() function start being clamped
- Control the new behavior for event dispatching on disabled form controls
- Control the new behavior of HTMLElement.offsetParent
- Control the URL parameter filter feature
- Control the User-Agent Client Hints feature.
- Control the User-Agent Client Hints GREASE Update feature.
- Control use of the File Handling API
- Controls whether the deprecated :--foo syntax for CSS custom state is enabled
- Controls whether the new HTML parser behavior for the <select> element is enabled
- Default Flash setting
- Default key generation setting
- Default legacy SameSite cookie behavior setting
- Default search provider icon
- Default search provider instant URL
- Default third-party storage partitioning setting
- Determines whether the built-in certificate verifier will enforce constraints encoded into trust anchors loaded from the platform trust store.
- Determines whether the Chrome Root Store and built-in certificate verifier will be used to verify server certificates
- Disable Certificate Transparency enforcement for a list of Legacy Certificate Authorities
- Disable SPDY protocol
- Disable third-party storage partitioning for specific top-level origins
- Disable TLS False Start
- Do not set window.opener for links targeting _blank
- Enable 3DES cipher suites in TLS
- Enable a TLS 1.3 security feature for local trust anchors.
- Enable Chrome Cleanup on Windows
- Enable chrome://devices
- Enable CORS check mitigations in the new CORS implementation
- Enable creation of supervised users
- Enable deprecated privet printing
- Enable deprecated web platform features for a limited time
- Enable DHE cipher suites in TLS
- Enable download bubble UI
- Enable firewall traversal from remote access client
- Enable Force-installed Extensions With Non-Malware Violations
- Enable Google Cloud Print proxy
- Enable HTTP/0.9 support on non-default ports
- Enable Instant
- Enable keyboard focusable scrollers
- Enable lock icon in the omnibox for secure connections
- Enable Native Window Occlusion
- Enable network prediction
- Enable Optimization Guide Fetching
- Enable or disable the User-Agent Reduction.
- Enable PAC URL stripping (for https://)
- Enable post-quantum key agreement for TLS
- Enable RC4 cipher suites in TLS
- Enable Renderer Code Integrity
- Enable sending downloads to Google for deep scanning for users enrolled in the Advanced Protection program
- Enable showing the welcome page on the first browser launch following OS upgrade
- Enable stricter treatment for mixed content
- Enable submission of documents to Google Cloud Print
- Enable support for the PPB_VideoDecoder(Dev) API.
- Enable the browser's UI Automation accessibility framework provider on Windows
- Enable the old web-based signin flow
- Enable third party software injection blocking
- Enable trust in Symantec Corporation's Legacy PKI Infrastructure
- Enable two-factor authentication for remote access hosts
- Enable zstd content-encoding support
- Enterprise web store name (deprecated)
- Enterprise web store URL (deprecated)
- Extend Flash content setting to all content (deprecated)
- Extend support for Chrome Apps on Microsoft® Windows®, macOS, and Linux.
- Force disable spellcheck languages
- Force networking code to run in the browser process
- Force persistent quota to be enabled
- Force WebSQL in non-secure contexts to be enabled.
- Force WebSQL in third-party contexts to be re-enabled.
- Force WebSQL to be enabled.
- Forces Native Client (NaCl) to be allowed to run.
- Freeze User-Agent string major version at 99
- Insecure Hashes in TLS Handshakes Enabled
- Kerberos delegation server allowlist
- Load the CryptoToken component extension at startup
- Manage the deprecated prefixed video fullscreen API's availability
- Managed toolbar avatar label setting
- Maximum SSL version enabled
- Minimum SSL version enabled
- Minimum TLS version to fallback to
- Parameter controlling search term placement for the default search provider
- Parameters for instant URL which uses POST
- Policy overrides for Debug builds of the remote access host
- Prevent app promotions from appearing on the new tab page
- Re-enable deprecated/removed Mutation Events
- Re-enable the deprecated async interface for FileSystemSyncAccessHandle in File System Access API
- Re-enable the deprecated window.webkitStorageInfo API
- Re-enable the Event.path API until M115.
- Re-enable Web Components v0 API until M84.
- Restore permissive Chrome Apps <webview> behavior
- Revert to legacy SameSite behavior for cookies on these sites
- Set media disk cache size in bytes
- Settings for Tab Organizer
- Specifies whether the display-capture permissions-policy is checked or skipped.
- Specifies whether to allow websites to make requests to more-private network endpoints in an insecure manner
- Specifies whether to apply restrictions to requests to local network endpoints
- Specifies whether to apply restrictions to requests to more-private network endpoints
- Specifies whether WebAssembly modules can be sent cross-origin
- Specify a list of disabled plugins
- Specify a list of enabled plugins
- Specify a list of plugins that the user can enable or disable
- Specify whether the plugin finder should be disabled (deprecated)
- Suppress Google Cloud Print deprecation messages
- The enrollment token of cloud policy on desktop
- Use a default referrer policy of no-referrer-when-downgrade.
- Use Legacy Form Controls until M84.
- Use the legacy CORS implementation rather than new CORS