Policy

Allow download restrictions

Google

Back to Google Chrome - Default Settings (users can override)Back to main
Allow download restrictions
Jump to overview

Policy overview

Key metadata and intent for this policy.

Category
Google > Google Chrome - Default Settings (users can override)
Supported on
Microsoft Windows 7 or later

Supported OS tags: Windows7

Setting the policy means users can't bypass download security decisions. There are many types of download warnings within Chrome, which roughly break down into these categories (learn more about Safe Browsing verdicts https://support.google.com/chrome/?p=ib_download_blocked): * Malicious, as flagged by the Safe Browsing server * Uncommon or unwanted, as flagged by the Safe Browsing server * A dangerous file type (e.g. all SWF downloads and many EXE downloads) Setting the policy blocks different subsets of these, depending on it's value: 0: No special restrictions. Default. 1: Blocks malicious files flagged by the Safe Browsing server AND Blocks all dangerous file types. Only recommended for OUs/browsers/users that have a high tolerance for False Positives. 2: Blocks malicious files flagged by the Safe Browsing server AND Blocks uncommon or unwanted files flagged by the Safe Browsing server AND Blocks all dangerous file types. Only recommended for OUs/browsers/users that have a high tolerance for False Positives. 3: Blocks all downloads. Not recommended, except for special use cases. 4: Blocks malicious files flagged by the Safe Browsing server, does not block dangerous file types. Recommended. Note: These restrictions apply to downloads triggered from webpage content, as well as the Download link… menu option. They don't apply to the download of the currently displayed page or to saving as PDF from the printing options. Read more about Safe Browsing ( https://developers.google.com/safe-browsing ).

Internal name
DownloadRestrictions_recommended
Policy ID
f58daf210d60
Elements
1

Registry values

How enabled and disabled states update the registry.

No explicit registry values are set for enabled or disabled states.

Policy elements

Inputs and configuration options exposed by this policy.

ScopeElementTypeRegistry mappingConstraints & behaviorCopy
Download restrictions
ID DownloadRestrictions
enum
Path
Software\Policies\Google\Chrome\Recommended
Value name
DownloadRestrictions
Type
REG_DWORD
Options: No special restrictions. Default. (0), Block malicious downloads and dangerous file types. (1), Block malicious downloads, uncommon or unwanted downloads and dangerous file types. (2), Block all downloads. (3), Block malicious downloads. Recommended. (4)
Download restrictions
Both · Type enum
Registry mapping
Path
Software\Policies\Google\Chrome\Recommended
Value name
DownloadRestrictions
Type
REG_DWORD
Details
Options: No special restrictions. Default. (0), Block malicious downloads and dangerous file types. (1), Block malicious downloads, uncommon or unwanted downloads and dangerous file types. (2), Block all downloads. (3), Block malicious downloads. Recommended. (4)