2.6.1 Ensure 'Enable saving passwords to the password manager' is Explicitly Configured


Google Chrome has a built in password manager to store passwords for users. Chrome will use local authentication to allow users to gain access to these passwords.

The recommended state for this setting is: Explicitly set to Enabled (1) or Disabled (0) based on the organization's needs.

NOTE: If you choose to Enable this setting please review Disable synchronization of data with Google and ensure this setting is configured to meet organizational requirements.


The Google Chrome password manager is Enabled by default and each organization should review and determine if they want to allow users to store passwords in the Browser. If another solution is used instead of the built in Chrome option then an organization should configure the setting to Disabled.


Organizationally dependent.


To establish the recommended configuration via Group Policy, configure the following setting to meet organizational requirements:

Computer Configuration\Polices\Administrative Templates\Google\Google Chrome\Password manager\Enable the password manager

Default Value:

Unset (Same as Enabled, but user can change)

See Also


Item Details


References: 800-53|CM-7a., CSCv6|16

Plugin: Windows

Control ID: 45f29f2d282379fb267d862cb96c9353a4368b31fb7a6ce0af582eaac9444a02