Policy Reference - Chrome

The following table outlines all the policy options available in the BrowserManagement.admx:

Ivanti\Browser Management 2020.3\WebData Management\Chrome

Policy

Description

Chrome Cookie Retention

It is recommended that this setting is enabled with specific options configured.

Recommended settings for this policy:

Retain specified number of browsing days:Enabled and value set to 7 days.

Remove expired cookies: Enabled

Retain only secure cookies: Enabled

Retain only HttpOnly cookies: Enabled

Enabling this policy allows for management of Chrome cookie data, and retains the data for a specific number of days.

To remove all cookie related data for the user, enable the option: Clear all Cookies.

To allow cookies to be retained for a specified number of days, enable the option: Retain specified number of calendar days.

To allow cookies to be retained for a specified number of active browsing days, enable the option: Retain specified number of browsing days.

Note this setting retains history data for the number of days selected where browsing activity has occurred. This excludes any days of inactivity.

To remove cookie data that has expired, enable the option: Remove expired cookies.

To remove cookies which do not have the secureClosedCookies can be set with a secure flag which forbids the cookie to be transmitted over simple HTTP. By default, cookies are not set with the secure flag.flag, enable the option: Retain only secure cookies.

To remove cookies that do not have theHttpOnlyClosedCookies can be set with a HttpOnly flag which limits the scope of the cookie and prevents the use of the cookie on the client side. By default, cookies can be set and used over HTTP and directly by the browser via JavaScript. Setting the HttpOnly flag restricts access to cookies via JavaScript at the client side. flag, enable the option: Retain only HttpOnly cookies.

Chrome Cookie Type Removal

It is recommended this policy is enabled with specific options configured.

Recommended settings for this policy:

Remove known advertising and tracking cookies: Enabled

The policy allows granular control over which cookie typesClosedEach cookie stored for a user on their computer has a type which is defined by the company that hosts the website. Cookie types can be used to identify a cookie regardless of whether it is a first-party or third-party cookie. An example of a cookie type is _ga. A -ga cookie is one originating from Google Analytics and is utilized by many websites in the world. It provides website administrators with data about the traffic the website receives via the Google Analytics platform. As the cookie is provided directly from the website the user is visiting, this is a first-party cookie. are retained.

Enabling the policy allows you to remove cookies based on their type. For example, _ga cookies are used to gather data about website activity by Google Analytics and you may choose to remove them.

To remove cookie types identified as being used for advertising or tracking purposes enable the option: Remove known advertising and tracking cookies

Note, the Browser Management agent includes a pre-defined list of known advertising and tracking cookie types which is used when this option is enabled. Removal of these cookies will not affect the usability of websites.

To define specific cookie types to be removed enter the cookie type in the field: List of Cookie types.

Note that when you add a cookie type to the list an exact match is required - including case.

When both options are enabled the list of cookie types is appended to the Remove known advertising and tracking cookies list.

Chrome Data Report

It is recommended that this policy is enabled only when required.

When enabled, this policy generates data exports of the WebData Management activity for Chrome. The report contains all entries and the action performed upon each item.

Separate files are generated for cookie and history data. The cookie report contains all cookie types for all URLs. See also Data Report Formats.

When enabled a folder path is required to specify the report location.

For example, C:\Temp

To remove user references from the exported data, enable the option: Anonymize the exported data.

Chrome DOM Data Removal

It is recommended that this setting is enabled.

When enabled, this policy removes Chrome Document Object Model (DOM) data.

DOM data is used by browsers to store a variety of data required by web browsing. The data is retained for caching purposes.

Chrome Extension Locale Removal

It is recommended that this policy is enabled only when required.

Locale data may be present for each Chrome extension with locale information being present for each supported language.

When enabled, this policy manages locale data installed as part of Chrome extensions.

Note: The list specified is used for an exact text match (case insensitive).

Wildcards are also supported.

Example:

en* retains all locales that contain en.
In addition, the default locale for the extension will always be retained.

Chrome Extension Removal

It is recommended that this policy is enabled only when required.

This policy manages Chrome extensions, removing them according to the options selected.

To remove all Chrome extensions that are part of any blacklist specified, enable the option: Blacklisted Extensions.

To remove all Chrome extensions that are not specified in any whitelist, enable the option: Whitelisted Extensions .

To remove all Chrome extensions, enable the option: Remove All Extensions.

Note: The blacklist and whitelist verification will use an exact text match (case insensitive). However wild card use is supported to perform a contains check.

Example:

Ivanti* returns all extensions that start with ivanti.

Chrome History Retention

It is recommended that this setting is enabled.

The recommended setting for this policy is:

Retain specified number of browsing days: Enabled and value set to 7 days.

Enabling this policy option allows for history data to be retained for a specific number of days.

To remove all history-related data for the user, enable the option: Clear all history

To allow for history to be retained for a specific number of days, enable the option: Retain specified number of calendar days

To allow history data to be retained for a specified number of active browsing days, enable the option: Retain specified number of browsing days.

Note this setting retains cookie data for the number of days selected where browsing activity has occurred. This includes any days of inactivity.

Chrome Temporary Internet Data Removal

It is recommended that this setting is enabled.

When enabled this policy removes Chrome temporary internet data.

Chrome Third Party Cookie Removal

It is recommended that this setting is enabled.

When enabled this policy removes Chrome third party cookiesClosedA third-party cookie is data stored on a user’s computer. It is created by a website with a domain name other than the one the user is currently visiting. Third-party cookies are often used for tracking and advertising purposes to build up a picture of user habits and activities on a particular device..

Third party cookies are generated from domains which do not match that of the primary website browsed.

Related Topics

Data Report Format

Configure Browser Management

Browser Management – Default Configuration