Allow cookies on these sites
Allows you to set a list of url patterns that specify sites which are allowed to set cookies.
If this policy is left not set the global default value will be used for all sites either from the 'DefaultCookiesSetting' policy if it is set, or the user's personal configuration otherwise.
See also policies 'CookiesBlockedForUrls' and 'CookiesSessionOnlyForUrls'. Note that there must be no conflicting URL patterns between these three policies - it is unspecified which policy takes precedence.
Example value:
https://www.example.com
[*.]example.edu
Supported on: At least Microsoft Windows 7 or Windows Server 2008 family
Allow cookies on these sites
| Registry Hive | HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER |
| Registry Path | Software\Policies\Google\Chrome\CookiesAllowedForUrls |
| Value Name | {number} |
| Value Type | REG_SZ |
| Default Value |
chrome.admx
- Google
- Google Chrome - Default Settings (users can override)
- Content settings
- Deprecated policies
- Home page
- New Tab Page
- Password manager
- Printing
- Startup pages
- Allow download restrictions
- Application locale
- Block third party cookies
- Continue running background apps when Google Chrome is closed
- Enable alternate error pages
- Enable AutoFill for addresses
- Enable AutoFill for credit cards
- Enable AutoFill
- Enable Bookmark Bar
- Enable network prediction
- Enable network prediction
- Enable or disable spell checking web service
- Enable reporting of usage and crash-related data
- Enable Safe Browsing for trusted sources
- Enable Safe Browsing
- Enable search suggestions
- Enable Translate
- Import autofill form data from default browser on first run
- Import bookmarks from default browser on first run
- Import browsing history from default browser on first run
- Import saved passwords from default browser on first run
- Import search engines from default browser on first run
- Set default download directory
- Set download directory
- Show Home button on toolbar
- Use System Default Printer as Default
- Google Chrome
- Allow Google Chrome Frame to handle the following content types
- Content settings
- Allow cookies on these sites
- Allow images on these sites
- Allow insecure content on these sites
- Allow JavaScript on these sites
- Allow key generation on these sites
- Allow notifications on these sites
- Allow popups on these sites
- Allow the Flash plugin on these sites
- Allow WebUSB on these sites
- Automatically grant permission to these sites to connect to USB devices with the given vendor and product IDs.
- Automatically select client certificates for these sites
- Block cookies on these sites
- Block images on these sites
- Block insecure content on these sites
- Block JavaScript on these sites
- Block key generation on these sites
- Block notifications on these sites
- Block popups on these sites
- Block the Flash plugin on these sites
- Block WebUSB on these sites
- Control use of insecure content exceptions
- Control use of the Web Bluetooth API
- Control use of the WebUSB API
- Default cookies setting
- Default Flash setting
- Default geolocation setting
- Default images setting
- Default JavaScript setting
- Default key generation setting
- Default legacy SameSite cookie behavior setting
- Default notification setting
- Default popups setting
- Limit cookies from matching URLs to the current session
- Revert to legacy SameSite behavior for cookies on these sites
- Default HTML renderer for Google Chrome Frame
- Default search provider
- Default search provider encodings
- Default search provider icon
- Default search provider instant URL
- Default search provider keyword
- Default search provider name
- Default search provider new tab page URL
- Default search provider search URL
- Default search provider suggest URL
- Enable the default search provider
- List of alternate URLs for the default search provider
- Parameter controlling search term placement for the default search provider
- Parameter providing search-by-image feature for the default search provider
- Parameters for image URL which uses POST
- Parameters for instant URL which uses POST
- Parameters for search URL which uses POST
- Parameters for suggest URL which uses POST
- Deprecated policies
- Allow insecure algorithms in integrity checks on extension updates and installs
- Allow sign in to Google Chrome
- Allow sites to simultaneously navigate and open pop-ups
- Allow users to show passwords in Password Manager (deprecated)
- Choose how to specify proxy server settings
- Clear site data on browser shutdown (deprecated)
- Default mediastream setting
- Disable URL protocol schemes
- Enable firewall traversal from remote access client
- Enable Incognito mode
- Enable Instant
- Enable JavaScript
- Enable the old web-based signin flow
- Enable two-factor authentication for remote access hosts
- Enterprise web store name (deprecated)
- Enterprise web store URL (deprecated)
- Force SafeSearch
- Origins or hostname patterns for which restrictions on insecure origins should not apply
- Prevent app promotions from appearing on the new tab page
- The enrollment token of cloud policy on desktop
- Use a default referrer policy of no-referrer-when-downgrade.
- Extensions
- Blocks external extensions from being installed
- Configure allowed app/extension types
- Configure extension, app, and user script install sources
- Configure extension installation blacklist
- Configure extension installation whitelist
- Configure the list of force-installed apps and extensions
- Extension management settings
- Google Cast
- Home page
- HTTP authentication
- Legacy Browser Support
- Alternative browser to launch for configured websites.
- Command-line parameters for switching from the alternative browser.
- Command-line parameters for the alternative browser.
- Delay before launching alternative browser (milliseconds)
- Enable the Legacy Browser Support feature.
- Keep last tab open in Chrome.
- Path to Chrome for switching from the alternative browser.
- URL of an XML file that contains URLs that should never trigger a browser switch.
- URL of an XML file that contains URLs to load in an alternative browser.
- Use Internet Explorer's SiteList policy for Legacy Browser Support.
- Websites that should never trigger a browser switch.
- Websites to open in alternative browser
- Locally managed users settings
- Native Messaging
- New Tab Page
- Password manager
- Printing
- Proxy server
- Remote access
- Allow gnubby authentication for remote access hosts
- Allow remote access users to transfer files to/from the host
- Allow remote users to interact with elevated windows in remote assistance sessions
- Client certificate for connecting to RemoteAccessHostTokenValidationUrl
- Configure the required domain name for remote access clients
- Configure the required domain name for remote access hosts
- Configure the required domain names for remote access clients
- Configure the required domain names for remote access hosts
- Configure the TalkGadget prefix for remote access hosts
- Enable curtaining of remote access hosts
- Enable firewall traversal from remote access host
- Enable or disable PIN-less authentication for remote access hosts
- Enable the use of relay servers by the remote access host
- Policy overrides for Debug builds of the remote access host
- Restrict the UDP port range used by the remote access host
- URL for validating remote access client authentication token
- URL where remote access clients should obtain their authentication token
- Safe Browsing settings
- Configure the change password URL.
- Configure the list of domains on which Safe Browsing will not trigger warnings.
- Configure the list of enterprise login URLs where password protection service should capture fingerprint of password.
- Enable Safe Browsing Extended Reporting
- Password protection warning trigger
- Startup pages
- Abusive Experience Intervention Enforce
- Ads setting for sites with intrusive ads
- Allow access to a list of URLs
- Allow background tabs freeze
- Allow certificates issued by local trust anchors without subjectAlternativeName extension
- Allow collection of WebRTC event logs from Google services
- Allow Dinosaur Easter Egg Game
- Allow download restrictions
- Allow fullscreen mode
- Allow Google Cast to connect to Cast devices on all IP addresses.
- Allow invocation of file selection dialogs
- Allow media autoplay
- Allow media autoplay on a whitelist of URL patterns
- Allow merging dictionary policies from different sources
- Allow merging list policies from different sources
- Allow or deny audio capture
- Allow or deny screen capture
- Allow or deny video capture
- Allow proceeding from the SSL warning page
- Allow queries to a Google time service
- Allow queries to a Google time service
- Allow QUIC protocol
- Allow running plugins that are outdated
- Allows a page to perform synchronous XHR requests during page dismissal.
- Allows a page to show popups during its unloading
- Allow the audio sandbox to run
- Allow user feedback
- Allow users to customize the background on the New Tab page
- Allow users to opt in to Safe Browsing extended reporting
- Allow websites to query for available payment methods.
- Always Open PDF files externally
- Always runs plugins that require authorization (deprecated)
- Application locale
- Ask where to save each file before downloading
- Block access to a list of URLs
- Block third party cookies
- Browser sign in settings
- Configure list of force-installed Web Apps
- Continue running background apps when Google Chrome is closed
- Control how Chrome Cleanup reports data to Google
- Control SafeSites adult content filtering.
- Control where Developer Tools can be used
- Default printer selection rules
- Define domains allowed to access G Suite
- Disable Certificate Transparency enforcement for a list of Legacy Certificate Authorities
- Disable Certificate Transparency enforcement for a list of subjectPublicKeyInfo hashes
- Disable Certificate Transparency enforcement for a list of URLs
- Disable Developer Tools
- Disable Print Preview
- Disable proceeding from the Safe Browsing warning page
- Disable saving browser history
- Disable SPDY protocol
- Disable support for 3D graphics APIs
- Disable synchronization of data with Google
- Disable taking screenshots
- Disable TLS False Start
- DNS interception checks enabled
- Enable add person in user manager
- Enable alternate error pages
- Enable Ambient Authentication for profile types.
- Enable a TLS 1.3 security feature for local trust anchors.
- Enable AutoFill for addresses
- Enable AutoFill for credit cards
- Enable AutoFill
- Enable Bookmark Bar
- Enable chrome://devices
- Enable Chrome Cleanup on Windows
- Enable component updates in Google Chrome
- Enable CORS check mitigations in the new CORS implementation
- Enable deleting browser and download history
- Enable deprecated web platform features for a limited time
- Enable DHE cipher suites in TLS
- Enable ending processes in Task Manager
- Enable force sign in for Google Chrome
- Enable globally scoped HTTP auth cache
- Enable Google Cast
- Enable Google Cloud Print proxy
- Enable guest mode in browser
- Enable HTTP/0.9 support on non-default ports
- Enable mandatory cloud management enrollment
- Enable network prediction
- Enable network prediction
- Enable online OCSP/CRL checks
- Enable or disable bookmark editing
- Enable or disable spell checking web service
- Enable PAC URL stripping (for https://)
- Enable printing
- Enable RC4 cipher suites in TLS
- Enable Renderer Code Integrity
- Enable reporting of usage and crash-related data
- Enable Safe Browsing for trusted sources
- Enable Safe Browsing
- Enable search suggestions
- Enable security warnings for command-line flags
- Enable sending downloads to Google for deep scanning for users enrolled in the Advanced Protection program
- Enable showing full-tab promotional content
- Enable showing the welcome page on the first browser launch following OS upgrade
- Enable Signed HTTP Exchange (SXG) support
- Enable Site Isolation for every site
- Enable Site Isolation for specified origins
- Enables managed extensions to use the Enterprise Hardware Platform API
- Enable spellcheck
- Enables the concept of policy atomic groups
- Enable stricter treatment for mixed content
- Enable submission of documents to Google Cloud Print
- Enable the Click to Call Feature
- Enable the creation of roaming copies for Google Chrome profile data
- Enable third party software injection blocking
- Enable Translate
- Enable URL-keyed anonymized data collection
- Enable WPAD optimization
- Enforce browser guest mode
- Ephemeral profile
- Extend Flash content setting to all content
- Force disable spellcheck languages
- Force enable spellcheck languages
- Force Google SafeSearch
- Force minimum YouTube Restricted Mode
- Force networking code to run in the browser process
- Force YouTube Safety Mode
- Google Chrome cloud policy overrides Platform policy.
- Hide the web store from the New Tab Page and app launcher
- Import autofill form data from default browser on first run
- Import bookmarks from default browser on first run
- Import browsing history from default browser on first run
- Import of homepage from default browser on first run
- Import saved passwords from default browser on first run
- Import search engines from default browser on first run
- Incognito mode availability
- List of names that will bypass the HSTS policy check
- List of types that should be excluded from synchronization
- Managed Bookmarks
- Maximal number of concurrent connections to the proxy server
- Maximum fetch delay after a policy invalidation
- Maximum SSL version enabled
- Minimum SSL version enabled
- Minimum TLS version to fallback to
- Notify a user that a browser relaunch or device restart is recommended or required
- Origins or hostname patterns for which restrictions on insecure origins should not apply
- Proxy settings
- Re-enable Web Components v0 API until M84.
- Refresh rate for user policy
- Require online OCSP/CRL checks for local trust anchors
- Restrict the range of local UDP ports used by WebRTC
- Restrict which Google accounts are allowed to be set as browser primary accounts in Google Chrome
- Set disk cache directory
- Set disk cache size in bytes
- Set download directory
- Set Google Chrome as Default Browser
- Set Google Chrome Frame user data directory
- Set limit on megabytes of memory a single Chrome instance can use.
- Set media disk cache size in bytes
- Set the roaming profile directory
- Set the time period for update notifications
- Set user data directory
- Show an "Always open" checkbox in external protocol dialog.
- Show Home button on toolbar
- Show the apps shortcut in the bookmark bar
- Specify a list of disabled plugins
- Specify a list of enabled plugins
- Specify a list of plugins that the user can enable or disable
- Specify whether the plugin finder should be disabled (deprecated)
- Suppress the Google Chrome Frame turndown prompt
- Suppress the unsupported OS warning
- The enrollment token of cloud policy on desktop
- URLs/domains automatically permitted direct Security Key attestation
- URLs for which local IPs are exposed in WebRTC ICE candidates
- URLs that will be granted access to audio capture devices without prompt
- URLs that will be granted access to video capture devices without prompt
- Use built-in DNS client
- Use hardware acceleration when available
- Use System Default Printer as Default
- Use the legacy CORS implementation rather than new CORS
- Whether SHA-1 signed certificates issued by local trust anchors are allowed
- Google Chrome - Default Settings (users can override)
- Google
- Google Chrome - Default Settings (users can override)
- Content settings
- Deprecated policies
- Home page
- New Tab Page
- Password manager
- Printing
- Startup pages
- Allow download restrictions
- Application locale
- Block third party cookies
- Continue running background apps when Google Chrome is closed
- Enable alternate error pages
- Enable AutoFill for addresses
- Enable AutoFill for credit cards
- Enable AutoFill
- Enable Bookmark Bar
- Enable network prediction
- Enable network prediction
- Enable or disable spell checking web service
- Enable reporting of usage and crash-related data
- Enable Safe Browsing for trusted sources
- Enable Safe Browsing
- Enable search suggestions
- Enable Translate
- Import autofill form data from default browser on first run
- Import bookmarks from default browser on first run
- Import browsing history from default browser on first run
- Import saved passwords from default browser on first run
- Import search engines from default browser on first run
- Set default download directory
- Set download directory
- Show Home button on toolbar
- Use System Default Printer as Default
- Google Chrome
- Allow Google Chrome Frame to handle the following content types
- Content settings
- Allow cookies on these sites
- Allow images on these sites
- Allow insecure content on these sites
- Allow JavaScript on these sites
- Allow key generation on these sites
- Allow notifications on these sites
- Allow popups on these sites
- Allow the Flash plugin on these sites
- Allow WebUSB on these sites
- Automatically grant permission to these sites to connect to USB devices with the given vendor and product IDs.
- Automatically select client certificates for these sites
- Block cookies on these sites
- Block images on these sites
- Block insecure content on these sites
- Block JavaScript on these sites
- Block key generation on these sites
- Block notifications on these sites
- Block popups on these sites
- Block the Flash plugin on these sites
- Block WebUSB on these sites
- Control use of insecure content exceptions
- Control use of the Web Bluetooth API
- Control use of the WebUSB API
- Default cookies setting
- Default Flash setting
- Default geolocation setting
- Default images setting
- Default JavaScript setting
- Default key generation setting
- Default legacy SameSite cookie behavior setting
- Default notification setting
- Default popups setting
- Limit cookies from matching URLs to the current session
- Revert to legacy SameSite behavior for cookies on these sites
- Default HTML renderer for Google Chrome Frame
- Default search provider
- Default search provider encodings
- Default search provider icon
- Default search provider instant URL
- Default search provider keyword
- Default search provider name
- Default search provider new tab page URL
- Default search provider search URL
- Default search provider suggest URL
- Enable the default search provider
- List of alternate URLs for the default search provider
- Parameter controlling search term placement for the default search provider
- Parameter providing search-by-image feature for the default search provider
- Parameters for image URL which uses POST
- Parameters for instant URL which uses POST
- Parameters for search URL which uses POST
- Parameters for suggest URL which uses POST
- Deprecated policies
- Allow insecure algorithms in integrity checks on extension updates and installs
- Allow sign in to Google Chrome
- Allow sites to simultaneously navigate and open pop-ups
- Allow users to show passwords in Password Manager (deprecated)
- Choose how to specify proxy server settings
- Clear site data on browser shutdown (deprecated)
- Default mediastream setting
- Disable URL protocol schemes
- Enable firewall traversal from remote access client
- Enable Incognito mode
- Enable Instant
- Enable JavaScript
- Enable the old web-based signin flow
- Enable two-factor authentication for remote access hosts
- Enterprise web store name (deprecated)
- Enterprise web store URL (deprecated)
- Force SafeSearch
- Origins or hostname patterns for which restrictions on insecure origins should not apply
- Prevent app promotions from appearing on the new tab page
- The enrollment token of cloud policy on desktop
- Use a default referrer policy of no-referrer-when-downgrade.
- Extensions
- Blocks external extensions from being installed
- Configure allowed app/extension types
- Configure extension, app, and user script install sources
- Configure extension installation blacklist
- Configure extension installation whitelist
- Configure the list of force-installed apps and extensions
- Extension management settings
- Google Cast
- Home page
- HTTP authentication
- Legacy Browser Support
- Alternative browser to launch for configured websites.
- Command-line parameters for switching from the alternative browser.
- Command-line parameters for the alternative browser.
- Delay before launching alternative browser (milliseconds)
- Enable the Legacy Browser Support feature.
- Keep last tab open in Chrome.
- Path to Chrome for switching from the alternative browser.
- URL of an XML file that contains URLs that should never trigger a browser switch.
- URL of an XML file that contains URLs to load in an alternative browser.
- Use Internet Explorer's SiteList policy for Legacy Browser Support.
- Websites that should never trigger a browser switch.
- Websites to open in alternative browser
- Locally managed users settings
- Native Messaging
- New Tab Page
- Password manager
- Printing
- Proxy server
- Remote access
- Allow gnubby authentication for remote access hosts
- Allow remote access users to transfer files to/from the host
- Allow remote users to interact with elevated windows in remote assistance sessions
- Client certificate for connecting to RemoteAccessHostTokenValidationUrl
- Configure the required domain name for remote access clients
- Configure the required domain name for remote access hosts
- Configure the required domain names for remote access clients
- Configure the required domain names for remote access hosts
- Configure the TalkGadget prefix for remote access hosts
- Enable curtaining of remote access hosts
- Enable firewall traversal from remote access host
- Enable or disable PIN-less authentication for remote access hosts
- Enable the use of relay servers by the remote access host
- Policy overrides for Debug builds of the remote access host
- Restrict the UDP port range used by the remote access host
- URL for validating remote access client authentication token
- URL where remote access clients should obtain their authentication token
- Safe Browsing settings
- Configure the change password URL.
- Configure the list of domains on which Safe Browsing will not trigger warnings.
- Configure the list of enterprise login URLs where password protection service should capture fingerprint of password.
- Enable Safe Browsing Extended Reporting
- Password protection warning trigger
- Startup pages
- Abusive Experience Intervention Enforce
- Ads setting for sites with intrusive ads
- Allow access to a list of URLs
- Allow background tabs freeze
- Allow certificates issued by local trust anchors without subjectAlternativeName extension
- Allow collection of WebRTC event logs from Google services
- Allow Dinosaur Easter Egg Game
- Allow download restrictions
- Allow fullscreen mode
- Allow Google Cast to connect to Cast devices on all IP addresses.
- Allow invocation of file selection dialogs
- Allow media autoplay
- Allow media autoplay on a whitelist of URL patterns
- Allow merging dictionary policies from different sources
- Allow merging list policies from different sources
- Allow or deny audio capture
- Allow or deny screen capture
- Allow or deny video capture
- Allow proceeding from the SSL warning page
- Allow queries to a Google time service
- Allow queries to a Google time service
- Allow QUIC protocol
- Allow running plugins that are outdated
- Allows a page to perform synchronous XHR requests during page dismissal.
- Allows a page to show popups during its unloading
- Allow the audio sandbox to run
- Allow user feedback
- Allow users to customize the background on the New Tab page
- Allow users to opt in to Safe Browsing extended reporting
- Allow websites to query for available payment methods.
- Always Open PDF files externally
- Always runs plugins that require authorization (deprecated)
- Application locale
- Ask where to save each file before downloading
- Block access to a list of URLs
- Block third party cookies
- Browser sign in settings
- Configure list of force-installed Web Apps
- Continue running background apps when Google Chrome is closed
- Control how Chrome Cleanup reports data to Google
- Control SafeSites adult content filtering.
- Control where Developer Tools can be used
- Default printer selection rules
- Define domains allowed to access G Suite
- Disable Certificate Transparency enforcement for a list of Legacy Certificate Authorities
- Disable Certificate Transparency enforcement for a list of subjectPublicKeyInfo hashes
- Disable Certificate Transparency enforcement for a list of URLs
- Disable Developer Tools
- Disable Print Preview
- Disable proceeding from the Safe Browsing warning page
- Disable saving browser history
- Disable SPDY protocol
- Disable support for 3D graphics APIs
- Disable synchronization of data with Google
- Disable taking screenshots
- Disable TLS False Start
- DNS interception checks enabled
- Enable add person in user manager
- Enable alternate error pages
- Enable Ambient Authentication for profile types.
- Enable a TLS 1.3 security feature for local trust anchors.
- Enable AutoFill for addresses
- Enable AutoFill for credit cards
- Enable AutoFill
- Enable Bookmark Bar
- Enable chrome://devices
- Enable Chrome Cleanup on Windows
- Enable component updates in Google Chrome
- Enable CORS check mitigations in the new CORS implementation
- Enable deleting browser and download history
- Enable deprecated web platform features for a limited time
- Enable DHE cipher suites in TLS
- Enable ending processes in Task Manager
- Enable force sign in for Google Chrome
- Enable globally scoped HTTP auth cache
- Enable Google Cast
- Enable Google Cloud Print proxy
- Enable guest mode in browser
- Enable HTTP/0.9 support on non-default ports
- Enable mandatory cloud management enrollment
- Enable network prediction
- Enable network prediction
- Enable online OCSP/CRL checks
- Enable or disable bookmark editing
- Enable or disable spell checking web service
- Enable PAC URL stripping (for https://)
- Enable printing
- Enable RC4 cipher suites in TLS
- Enable Renderer Code Integrity
- Enable reporting of usage and crash-related data
- Enable Safe Browsing for trusted sources
- Enable Safe Browsing
- Enable search suggestions
- Enable security warnings for command-line flags
- Enable sending downloads to Google for deep scanning for users enrolled in the Advanced Protection program
- Enable showing full-tab promotional content
- Enable showing the welcome page on the first browser launch following OS upgrade
- Enable Signed HTTP Exchange (SXG) support
- Enable Site Isolation for every site
- Enable Site Isolation for specified origins
- Enables managed extensions to use the Enterprise Hardware Platform API
- Enable spellcheck
- Enables the concept of policy atomic groups
- Enable stricter treatment for mixed content
- Enable submission of documents to Google Cloud Print
- Enable the Click to Call Feature
- Enable the creation of roaming copies for Google Chrome profile data
- Enable third party software injection blocking
- Enable Translate
- Enable URL-keyed anonymized data collection
- Enable WPAD optimization
- Enforce browser guest mode
- Ephemeral profile
- Extend Flash content setting to all content
- Force disable spellcheck languages
- Force enable spellcheck languages
- Force Google SafeSearch
- Force minimum YouTube Restricted Mode
- Force networking code to run in the browser process
- Force YouTube Safety Mode
- Google Chrome cloud policy overrides Platform policy.
- Hide the web store from the New Tab Page and app launcher
- Import autofill form data from default browser on first run
- Import bookmarks from default browser on first run
- Import browsing history from default browser on first run
- Import of homepage from default browser on first run
- Import saved passwords from default browser on first run
- Import search engines from default browser on first run
- Incognito mode availability
- List of names that will bypass the HSTS policy check
- List of types that should be excluded from synchronization
- Managed Bookmarks
- Maximal number of concurrent connections to the proxy server
- Maximum fetch delay after a policy invalidation
- Maximum SSL version enabled
- Minimum SSL version enabled
- Minimum TLS version to fallback to
- Notify a user that a browser relaunch or device restart is recommended or required
- Origins or hostname patterns for which restrictions on insecure origins should not apply
- Proxy settings
- Re-enable Web Components v0 API until M84.
- Refresh rate for user policy
- Require online OCSP/CRL checks for local trust anchors
- Restrict the range of local UDP ports used by WebRTC
- Restrict which Google accounts are allowed to be set as browser primary accounts in Google Chrome
- Set disk cache directory
- Set disk cache size in bytes
- Set download directory
- Set Google Chrome as Default Browser
- Set Google Chrome Frame user data directory
- Set limit on megabytes of memory a single Chrome instance can use.
- Set media disk cache size in bytes
- Set the roaming profile directory
- Set the time period for update notifications
- Set user data directory
- Show an "Always open" checkbox in external protocol dialog.
- Show Home button on toolbar
- Show the apps shortcut in the bookmark bar
- Specify a list of disabled plugins
- Specify a list of enabled plugins
- Specify a list of plugins that the user can enable or disable
- Specify whether the plugin finder should be disabled (deprecated)
- Suppress the Google Chrome Frame turndown prompt
- Suppress the unsupported OS warning
- The enrollment token of cloud policy on desktop
- URLs/domains automatically permitted direct Security Key attestation
- URLs for which local IPs are exposed in WebRTC ICE candidates
- URLs that will be granted access to audio capture devices without prompt
- URLs that will be granted access to video capture devices without prompt
- Use built-in DNS client
- Use hardware acceleration when available
- Use System Default Printer as Default
- Use the legacy CORS implementation rather than new CORS
- Whether SHA-1 signed certificates issued by local trust anchors are allowed
- Google Chrome - Default Settings (users can override)