Create a Device Level Windows Chrome Browser Preferences Policy

The Chrome Browser policy can help you protect user and company data when Windows systems managed by JumpCloud access the Internet using Chrome. You can disable the use of some security-related features while making sure that users have access to the sites they need to improve productivity and efficiency.

Note:

This is a device level policy that applies system-wide to the device and all of its users. You can bind this policy to individual devices or device groups. For policies that apply to a specific user's profile across devices, see Get Started: Policies and Learn More section of this article.

JumpCloud's policy framework lets you remotely apply browser settings to Windows systems that govern the use of Chrome, such as the use of password manager, data security and privacy, and browsing experience. For general information on JumpCloud Policies, see Create a Policy.

Tip:

JumpCloud provides a universal policy to keep Google Chrome up to date for Mac, Windows, and Linux. Applying one universal policy saves you time by automatically scheduling and enforcing Chrome security patches on a large number of managed devices running different operating systems. See Create a Universal Browser Patch Policy for more information about this paid feature. A universal policy does not conflict with the Windows Google Chrome Browser Preferences policy described below.

The browser features you control using this policy are set to Not Configured by default. If you leave the default, JumpCloud won’t manage a feature or its associated settings. Using this option lets the user choose how the feature is configured, unless you manage it in another way.

  • If you want to force the user to work with a feature, you can choose to Enable it.
  • If you want JumpCloud to prevent a user on the system from accessing or reconfiguring the browser feature, you can choose to Disable it.

For example, one setting in this policy lets you control the use of password manager in Chrome running on Windows systems. Using the Password Manager setting lets you control if Chrome remembers passwords for sites and signs users in automatically.

  • If you choose Not Configured, JumpCloud doesn’t manage this feature. Users may be able to choose whether they want to save passwords for sites and be automatically signed in.
  • If you choose Enabled, JumpCloud lets users access Chrome’s password manager. Users can choose whether they want to save passwords for all sites, for some specific sites, or never save passwords for specific sites. If users choose not to save passwords then they won’t be asked to save that password again.
  • If you choose Disabled, JumpCloud prevents users from accessing Chrome’s password manager. Users won’t ever be asked if they want to save a password in Chrome.

Creating the Policy

To create a Google Chrome Browser Preferences policy for Windows devices, do the following:

Selecting the Policy Template

  1. Log in to the JumpCloud Admin portal.

Important:

If your data is stored outside of the US, check which login URL you should be using depending on your region. If your organization uses LDAP, RADIUS, or requires firewall allow list configuration, the Fully Qualified Domain Names (FQDNs) will also be region specific. See JumpCloud Data Centers for the URLs, FQDNs, and IP addresses.

  1. Go to Device Management > Policy Management. The Policy Management page is displayed.
  2. On the Policy Management page, click +Add New.
  3. Select Device Policy to assign the policy to devices and device groups. On the New Device Policy page:
    • Select the Windows tab.
    • Search and select the policy name and click Configure. The Details tab of the policy is displayed.
    • On the Details tab, configure the required policy configuration settings.
    • (Optional) In the Policy Name field, enter a new name for the policy or keep the default. Policy names must be unique.
    • (Optional) In the Policy Notes field, enter details such as creation date of the policy, and information on testing and deployment of the policy.

Configuring the Policy

  • Under Settings, configure the following options:
    • Under Password Manager, change the default if necessary using the dropdown selections.
    • Under Save and Fill Payment Methods, change the default if necessary using the dropdown options.
    • Under Save and Fill Addresses and More, change the default if necessary using the dropdown list.

Applying the Policy

  • (Optional) Select the Policy Groups tab. Select one or more policy groups where you want to add this policy. 
  • Select the Device Groups tab. Select one or more device groups where you want to apply this policy to. For device groups with multiple OS member types, the policy only applies when a user logs into a supported Windows device that is enrolled in MDM.
  • Or, select the Devices tab. Select one or more devices where you want to apply this policy.
  • Click Create Policy. A success message is displayed indicating the completion of policy creation.

Note:

You must select either a device or device group to create and apply this policy.

Viewing Policy Status

  1. Select the Status tab.
  2. To see the last Result Log for a device where this policy is applied, click view.

Note:
  • If any errors occur, they're listed in Exit Status. If you have an Exit Status of 0, no errors occurred when applying or enforcing this policy.
Back to Top

Still Have Questions?

If you cannot find an answer to your question in our FAQ, you can always contact us.

Submit a Case