Skip to content

Guide to the Secure Configuration of Chromium

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Set Chromium's HTTP Authentication Scheme

    To set the default Chromium's HTTP Authentication Scheme, set <code>AuthSchemes</code> to <code><xccdf-1.2:sub idref="xccdf_org.ssgproject.content_value_var_auth_schema" use="legacy"></xccdf-1.2:su...
    Rule Unknown Severity
  • Require Outdated Plugins to be Authorized

    Chromium should prompt users for authorization to run outdated plugins. This can be enabled by setting AlwaysAuthorizePlugins to false in the Chromium policy file.
    Rule Unknown Severity
  • Set the Default Home Page

    When a browser is started the first web page displayed is the "home page". While the home page can be selected by the user, the default home page needs to be defined to display an approved page. To...
    Rule Unknown Severity
  • Ensure the Chromium Policy Configuration File Exists

    Chromium can be configured with numerous policies and settings. These settings can be set so that a user is unable to edit or change them. To prevent users from setting or changing Chromium setting...
    Rule Unknown Severity
  • Enable Plugins for Only Approved URLs

    In some cases, plugins utilized by organizationally approved websites may be allowed to be used by those websites, configure the approved URLs allowed to run plugins by setting <code>PluginsAllowed...
    Rule Unknown Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
