2.8.6 Ensure 'Enable or disable PIN-less authentication for remote access hosts' is set to 'Disabled'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


Chrome allows a user to opt-out of using user-specified PIN authentication and instead pair clients and hosts during connection time.

The recommended state for this setting is: Disabled (0)


If this setting is enabled, users can opt to pair clients and hosts at connection time, eliminating the need to enter a PIN every time.


If this setting is disabled, users will be required to enter PIN every time.


To establish the recommended configuration via Group Policy, set the following UI path to Disabled:

Computer Configuration\Polices\Administrative Templates\Google\Google Chrome\Remote access\Enable or disable PIN-less authentication

Default Value:

Unset (Same as Enabled, but user can change)

See Also