Details
This setting controls whether Google Chrome can use screen-share APIs including web-based online meetings, video, or screen sharing.
The recommended state for this setting is: Disabled (0)
NOTE: This setting is not considered (and a site will be allowed to use screen-share APIs) if the site matches an origin pattern in any of the following other settings: ScreenCaptureAllowedByOrigins, WindowCaptureAllowedByOrigins, TabCaptureAllowedByOrigins, SameOriginTabCaptureAllowedByOrigins.
Rationale:
Allowing screen-share APIs within Google Chrome could potentially allow for sensitive data to be shared via screen captures.
Impact:
Users will be unable to utilize APIs which support web-based meetings (video conferencing screen sharing), video, and screen capture. This could potentially have disruption to users who may have utilized these abilities in the past.
Solution
To establish the recommended configuration via GP, set the following UI path to Disabled:
Computer ConfigurationPoliciesAdministrative TemplatesGoogleGoogle ChromeAllow or deny screen captureAllow or deny screen capture
Default Value:
Unset (Same as Enabled, but user can change)
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.