Details
Specifies which HTTP authentication schemes are supported by Google Chrome.
Disabled (0): Allows all supported authentication schemes.
The recommended state for this setting is: Enabled with the value of ntlm, negotiate
Rationale:
Possible values are ‘basic’, ‘digest’, ‘ntlm’ and ‘negotiate’. Basic and Digest authentication do not provide sufficient security and can lead to submission of users password in plaintext or minimal protection (Integrated Authentication is supported for negotiate and ntlm challenges only).
Impact:
If some legacy application(s) or website(s) required insecure authentication mechanisms they will not work correctly.
Solution
To establish the recommended configuration via Group Policy, set the following UI path to Enabled: ntlm, negotiate:
Computer ConfigurationPolicesAdministrative TemplatesGoogleGoogle ChromeHTTP AuthenticationSupported authentication schemes
Default Value:
Unset (Same as Disabled, but user can change)
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Windows.