Windows
      Back to home
      1. Help Center
      2. Configuration Templates
      3. Windows

      ACSC E8 Nov 2023-ML2 User app hardening-Chrome Security Guide 2021.5.20

      Overview

      The Devicie Essential Eight Maturity Level 2 User Application Hardening (Nov 2023) configuration is to meet the Australian Cyber Security Centre’s guidance for this mitigation strategy. This configuration is specifically for the vendors (Google) guidance released in May 2021 for Chrome.

      Intune Description:

      E8 ML2 User App Hardening (Nov 2023) - Chrome Security Guide 2021.5.20

      Scope:

      This baseline should be applied to Windows devices. Must be deployed with “DEVICIE-PROD-ACSC E8 Nov 2023-ML1 User app hardening” & all additional “DEVICIE-PROD-ACSC E8 Nov 2023-ML2 User app hardening” add-on items.

      Policy Impact Areas:

      When deployed, this policy will impact:

      • Additional security controls, specifically for Google Chrome.

      • Enable Safe Browsing Protection

      Deployment Notes

       

      1. Pre-Deployment Considerations:

        • Review if Chrome is being utilized within the environment.

      2. Post-Deployment Validation:

        • Review Chrome configuration. Check if “Safe Browsing” is configured.

      Configuration Settings:

      Name

      Value

      Google

      Google Chrome

      Allow download restrictions (User)

      Enabled

        Download restrictions (User)

      Block malicious downloads and dangerous file types.

      Disable proceeding from the Safe Browsing warning page (User)

      Enabled

      Enable third party software injection blocking (User)

      Enabled

      Notify a user that a browser relaunch or device restart is recommended or required (User)

      Enabled

        Notify a user that a browser relaunch or device restart is recommended or required (User)

      Show a recurring prompt to the user indicating that a relaunch is required

      Set the time period for update notifications (User)

      Enabled

        Time period (milliseconds): (User)

      1209600000

      HTTP authentication

      Supported authentication schemes (User)

      Enabled

        Supported authentication schemes (User)

      ntlm,negotiate

      Safe Browsing settings

      Safe Browsing Protection Level (User)

      Enabled

        Safe Browsing Protection Level (User)

      Safe Browsing is active in the standard mode.
       

      Devicie Template Name

      ACSC E8 Nov 2023-ML2 User app hardening-Chrome Security Guide 2021.5.20

      Default Intune Deployed Name

      DEVICIE-PROD-ACSC E8 Nov 2023-ML2 User app hardening-Chrome Security Guide 2021.5.20

      Version

      1.0

      Template Last Updated

      Nov 18, 2024

      Document Last Updated:

      Jun 12, 2025