Steps
1. Open the GPMC
2. Create a GPO in this domain in your domain
3. Name as Google Chrome and click OK.
4. Right-click the policy you just created and click Edit
5. Navigate to the folder User Configuration\Policies\Windows Settings\Security Settings\Software Restriction Policies
6. Right-click Software Restriction Policies and select New Software Restriction Policies
7. Right click Additional Rules and choose New Path Rule.
8. In the Path field, type chromesetup.exe.
9. In the Security level drop-down box, choose Disallowed and click OK.
Repeat steps 7, 8,9 for the chrome.exe and gears-chrome-opt.msi files
Repeat steps 7, 8,9 for the path C:\Users\%username%\AppData\Local\Google\Chrome\Application\chrome.exe for Vista machines or C:\Documents and Settings\%username%\Local Settings\Application Data\Google\Chrome\Application\chrome.exe for XP machines. You should include this rule in case some of your users have already installed the browser.
After you implement the GPO and the Group Policy settings refresh on those users' local machines, they'll no longer be able to successfully run Google Chrome.
Open a command-prompt window and run the command gpupdate /force to apply the new rules.
Run the command gpresult /R in Vista SP1 or the command gpresult in XP and Vista (pre-SP1) to verify that the newly created GPO has successfully been applied.
As a final test, attempt to run the installer from the Google Chrome website. If the policy is successful, you should see the error
How to Stop Users From Installing Google Chrome
3 posts
• Page 1 of 1
How to Stop Users From Installing Google Chrome
by ManU » Thu Oct 22, 2009 3:53 pm
Regards
MANU PHILIP -MVP-Exchange Server
| MCITP | MCTS | MCSA| ITIL V3 |
Mirosoft TechNet Forums Profile: Manu PhiliP
MANU PHILIP -MVP-Exchange Server
| MCITP | MCTS | MCSA| ITIL V3 |
Mirosoft TechNet Forums Profile: Manu PhiliP
-
ManU - Founder
- Posts: 87
- Joined: Sat Sep 26, 2009 9:57 am
- Location: India-Kerala
Re: How to Stop Users From Installing Google Chrome
by FBSmith » Wed Dec 09, 2009 11:01 pm
I created the GPO,
I logged onto a virtual PC as a normal domain user. The policy shows up in the "gpresult".
Opened up IE 8, surfed to www.google.ca, clicked on "Install Google Chrome"
The installation started, then the Virtual PC rebooted by itself.
I logged on again, repeated the installation, the Google Chrome installation did complete, and it did install.
The software restriction did stop me from running it. (which was what I wanted)
Is there a way to stop it from even installing.
I did try; select New Software Restriction Policies.
Right click Additional Rules and choose New Path Rule. In the Path field, type chromesetup.exe.
In the Security level drop-down box, choose Disallowed and click OK.
Repeat for the chrome.exe and gears-chrome-opt.msi files.
but this not stop the install
I logged onto a virtual PC as a normal domain user. The policy shows up in the "gpresult".
Opened up IE 8, surfed to www.google.ca, clicked on "Install Google Chrome"
The installation started, then the Virtual PC rebooted by itself.
I logged on again, repeated the installation, the Google Chrome installation did complete, and it did install.
The software restriction did stop me from running it. (which was what I wanted)
Is there a way to stop it from even installing.
I did try; select New Software Restriction Policies.
Right click Additional Rules and choose New Path Rule. In the Path field, type chromesetup.exe.
In the Security level drop-down box, choose Disallowed and click OK.
Repeat for the chrome.exe and gears-chrome-opt.msi files.
but this not stop the install
- FBSmith
- Rank1
- Posts: 1
- Joined: Wed Dec 09, 2009 10:43 pm
Re: How to Stop Users From Installing Google Chrome
by ManU » Wed Dec 09, 2009 11:23 pm
Hi FBSmith,
Thank you very much for writing in my forum.
I will try to resolve the issue by the following steps
Additinal to your steps do these too..Select New Software Restriction Policies. Right click Additional Rules and choose New Path Rule. In the Path field set the rules for chrome.exe and gears-chrome-opt.msi
Repeat these for the path
C:\Users\%username%\AppData\Local\Google\Chrome\Application\chrome.exe for Vista machines C:\Documents and Settings\%username%\Local Settings\Application Data\Google\Chrome\Application\chrome.exe for XP machines
Open a command-prompt window and run the command gpupdate /force to apply the new rules.
Thank you very much for writing in my forum.
I will try to resolve the issue by the following steps
Additinal to your steps do these too..Select New Software Restriction Policies. Right click Additional Rules and choose New Path Rule. In the Path field set the rules for chrome.exe and gears-chrome-opt.msi
Repeat these for the path
C:\Users\%username%\AppData\Local\Google\Chrome\Application\chrome.exe for Vista machines C:\Documents and Settings\%username%\Local Settings\Application Data\Google\Chrome\Application\chrome.exe for XP machines
Open a command-prompt window and run the command gpupdate /force to apply the new rules.
Regards
MANU PHILIP -MVP-Exchange Server
| MCITP | MCTS | MCSA| ITIL V3 |
Mirosoft TechNet Forums Profile: Manu PhiliP
MANU PHILIP -MVP-Exchange Server
| MCITP | MCTS | MCSA| ITIL V3 |
Mirosoft TechNet Forums Profile: Manu PhiliP
-
ManU - Founder
- Posts: 87
- Joined: Sat Sep 26, 2009 9:57 am
- Location: India-Kerala
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 1 guest