Details
This is a setting for Chrome Remote desktop. If this setting is Disabled, the remote access host service cannot be started or configured to accept incoming connections.
Disabled (0): Prevent remote access connections to this machine
Enabled (1): Allow remote access connections to this machine
The recommended state for this setting is: Disabled (0)
Rationale:
Only approved remote access systems should be used.
NOTE: If Chrome Remote Desktop is approved and required for use, then this setting can be ignored.
Impact:
This setting will disable Chrome Remote Desktop. In general, Chrome Remote Desktop is not used by most businesses, so disabling it should have no impact.
Solution
To establish the recommended configuration via Group Policy, set the following UI path to Disabled:
Computer ConfigurationPoliciesAdministrative TemplatesGoogleGoogle ChromeRemote AccessAllow remote access connections to this machine
Default Value:
Unset (Same as Enabled, but user can change)
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Windows.