Roll src/third_party/WebKit f36d5e0:68b67cd (svn 193299:193303)
[chromium-blink-merge.git] / components / policy / resources / policy_templates_en-GB.xtb
blob2358826ccce8fc95328b74351565887bb5b660e8
1 <?xml version="1.0" ?><!DOCTYPE translationbundle><translationbundle lang="en-GB">
2 <translation id="1503959756075098984">Extension IDs and update URLs to be silently installed</translation>
3 <translation id="793134539373873765">Specifies whether p2p is to be used for OS update payloads. If set to True, devices will share and attempt to consume update payloads on the LAN, potentially reducing Internet bandwidth usage and congestion. If the update payload is not available on the LAN, the device will fall back to downloading from an update server. If set to False or not configured, p2p will not be used.</translation>
4 <translation id="2463365186486772703">Application locale</translation>
5 <translation id="1397855852561539316">Default search provider suggest URL</translation>
6 <translation id="3347897589415241400">The default behaviour for sites not in any content pack.
8 This policy is for internal use by Chrome itself.</translation>
9 <translation id="7040229947030068419">Sample value</translation>
10 <translation id="1213523811751486361">Specifies the URL of the search engine used to provide search suggestions. The URL should contain the string '<ph name="SEARCH_TERM_MARKER"/>', which will be replaced at query time by the text that the user has entered so far.
12 This policy is optional. If not set, no suggest URL will be used.
14 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
15 <translation id="6106630674659980926">Enable the password manager</translation>
16 <translation id="7109916642577279530">Allow or deny audio capture.
18 If enabled or not configured (default), the user will be prompted for
19 audio capture access except for URLs configured in the
20 AudioCaptureAllowedUrls list which will be granted access without prompting.
22 When this policy is disabled, the user will never be prompted and audio
23 capture will only be available to URLs configured in AudioCaptureAllowedUrls.
25 This policy affects all types of audio inputs and not only the built-in microphone.</translation>
26 <translation id="7267809745244694722">Media keys default to function keys</translation>
27 <translation id="9150416707757015439">This policy is deprecated. Please, use IncognitoModeAvailability instead.
28 Enables Incognito mode in <ph name="PRODUCT_NAME"/>.
30 If this setting is enabled or not configured, users can open web pages in incognito mode.
32 If this setting is disabled, users cannot open web pages in incognito mode.
34 If this policy is left unset, this will be enabled and the user will be able to use incognito mode.</translation>
35 <translation id="4203389617541558220">Limit the device uptime by scheduling automatic reboots.
37 When this policy is set, it specifies the length of device uptime after which an automatic reboot is scheduled.
39 When this policy is not set, the device uptime is not limited.
41 If you set this policy, users cannot change or override it.
43 An automatic reboot is scheduled at the selected time but may be delayed on the device by up to 24 hours if a user is currently using the device.
45 Note: Currently, automatic reboots are only enabled while the login screen is being shown or a Kiosk app session is in progress. This will change in the future and the policy will always apply, regardless of whether a session of any particular type is in progress or not.
47 The policy value should be specified in seconds. Values are clamped to be at least 3600 (one hour).</translation>
48 <translation id="5304269353650269372">Specifies the length of time without user input after which a warning dialogue is shown when running on battery power.
50 When this policy is set, it specifies the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> shows a warning dialogue telling the user that the idle action is about to be taken.
52 When this policy is unset, no warning dialogue is shown.
54 The policy value should be specified in milliseconds. Values are clamped to be less than or equal the idle delay.</translation>
55 <translation id="7818131573217430250">Set the default state of high contrast mode on the login screen</translation>
56 <translation id="7614663184588396421">List of disabled protocol schemes</translation>
57 <translation id="2309390639296060546">Default geolocation setting</translation>
58 <translation id="1313457536529613143">Specifies the percentage by which the screen dim delay is scaled when user activity is observed while the screen is dimmed or soon after the screen has been turned off.
60 If this policy is set, it specifies the percentage by which the screen dim delay is scaled when user activity is observed while the screen is dimmed or soon after the screen has been turned off. When the dim delay is scaled, the screen off, screen lock and idle delays get adjusted to maintain the same distances from the screen dim delay as originally configured.
62 If this policy is unset, a default scale factor is used.
64 The scale factor must be 100% or more.</translation>
65 <translation id="7443616896860707393">Cross-origin HTTP Basic Auth prompts</translation>
66 <translation id="2337466621458842053">Allows you to set a list of url patterns that specify sites which are allowed to display images.
68 If this policy is left unset, the global default value will be used for all sites either from the 'DefaultImagesSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
69 <translation id="4680961954980851756">Enable AutoFill</translation>
70 <translation id="5183383917553127163">Allows you to specify which extensions are not subject to the blacklist.
72 A blacklist value of * means all extensions are blacklisted and users can only install extensions listed in the whitelist.
74 By default, all extensions are whitelisted, but if all extensions have been blacklisted by policy, the whitelist can be used to override that policy.</translation>
75 <translation id="5921888683953999946">Set the default state of the large cursor accessibility feature on the login screen.
77 If this policy is set to true, the large cursor will be enabled when the login screen is shown.
79 If this policy is set to false, the large cursor will be disabled when the login screen is shown.
81 If you set this policy, users can temporarily override it by enabling or disabling the large cursor. However, the user's choice is not persistent and the default is restored whenever the login screen is shown anew or the user remains idle on the login screen for a minute.
83 If this policy is left unset, the large cursor is disabled when the login screen is first shown. Users can enable or disable the large cursor at any time and its status on the login screen is persisted between users.</translation>
84 <translation id="3185009703220253572">since version <ph name="SINCE_VERSION"/></translation>
85 <translation id="5298412045697677971">Configure user avatar image.
87 This policy allows you to configure the avatar image representing the user on the login screen. The policy is set by specifying the URL from which <ph name="PRODUCT_OS_NAME"/> can download the avatar image and a cryptographic hash used to verify the integrity of the download. The image must be in JPEG format, its size must not exceed 512 KB. The URL must be accessible without any authentication.
89 The avatar image is downloaded and cached. It will be re-downloaded whenever the URL or the hash changes.
91 The policy should be specified as a string that expresses the URL and hash in JSON format, conforming to the following schema:
93 &quot;type&quot;: &quot;object&quot;,
94 &quot;properties&quot;: {
95 &quot;url&quot;: {
96 &quot;description&quot;: &quot;The URL from which the avatar image can be downloaded.&quot;,
97 &quot;type&quot;: &quot;string&quot;
99 &quot;hash&quot;: {
100 &quot;description&quot;: &quot;The SHA-256 hash of the avatar image.&quot;,
101 &quot;type&quot;: &quot;string&quot;
106 If this policy is set, <ph name="PRODUCT_OS_NAME"/> will download and use the avatar image.
108 If you set this policy, users cannot change or override it.
110 If the policy is left not set, the user can choose the avatar image representing him / her on the login screen.</translation>
111 <translation id="2204753382813641270">Control shelf auto-hiding</translation>
112 <translation id="3816312845600780067">Enable bailout keyboard shortcut for auto-login</translation>
113 <translation id="3214164532079860003">This policy forces the home page to be imported from the current default browser if enabled.
115 If disabled, the home page is not imported.
117 If it is not set, the user may be asked whether to import or importing may happen automatically.</translation>
118 <translation id="5330684698007383292">Allow <ph name="PRODUCT_FRAME_NAME"/> to handle the following content types</translation>
119 <translation id="6647965994887675196">If set to true, supervised users can be created and used.
121 If set to false or not configured, supervised-user creation and login will be disabled. All existing supervised users will be hidden.
123 NOTE: The default behaviour for consumer and enterprise devices differs: on consumer devices, supervised users are enabled by default, but on enterprise devices they are disabled by default.</translation>
124 <translation id="69525503251220566">Parameter providing search-by-image feature for the default search provider</translation>
125 <translation id="5469825884154817306">Block images on these sites</translation>
126 <translation id="8412312801707973447">Whether online OCSP/CRL checks are performed</translation>
127 <translation id="2482676533225429905">Native Messaging</translation>
128 <translation id="6649397154027560979">This policy is deprecated, please use URLBlacklist instead.
130 Disables the listed protocol schemes in <ph name="PRODUCT_NAME"/>.
132 URLs using a scheme from this list will not load and can not be navigated to.
134 If this policy is left not set or the list is empty all schemes will be accessible in <ph name="PRODUCT_NAME"/>.</translation>
135 <translation id="3213821784736959823">Controls whether the built-in DNS client is used in <ph name="PRODUCT_NAME"/>.
137 If this policy is set to true, the built-in DNS client will be used, if available.
139 If this policy is set to false, the built-in DNS client will never be used.
141 If this policy is left not set, the users will be able to change whether the built-in DNS client is used by editing chrome://flags or specifying a command-line flag.</translation>
142 <translation id="2908277604670530363">Maximum number of concurrent connections to the proxy server</translation>
143 <translation id="556941986578702361">Control auto-hiding of the <ph name="PRODUCT_OS_NAME"/> shelf.
145 If this policy is set to 'AlwaysAutoHideShelf', the shelf will always auto-hide.
147 If this policy is set to 'NeverAutoHideShelf', the shelf never auto-hides.
149 If you set this policy, users cannot change or override it.
151 If the policy is left not set, users can choose whether the shelf should auto-hide.</translation>
152 <translation id="4838572175671839397">Contains a regular expression which is used to determine which users can sign in to <ph name="PRODUCT_NAME"/>.
154 An appropriate error is displayed if a user tries to log in with a username that does not match this pattern.
156 If this policy is left not set or blank, then any user can sign in to <ph name="PRODUCT_NAME"/>.</translation>
157 <translation id="2892225385726009373">When this setting is enabled, <ph name="PRODUCT_NAME"/> will always perform revocation checking for server certificates that successfully validate and are signed by locally-installed CA certificates.
159 If <ph name="PRODUCT_NAME"/> is unable to obtain revocation status information, such certificates will be treated as revoked ('hard-fail').
161 If this policy is not set, or it is set to false, then Chrome will use the existing online revocation checking settings.</translation>
162 <translation id="3516856976222674451">Limit the maximum length of a user session.
164 When this policy is set, it specifies the length of time after which a user is automatically logged out, terminating the session. The user is informed about the remaining time by a countdown timer shown in the system tray.
166 When this policy is not set, the session length is not limited.
168 If you set this policy, users cannot change or override it.
170 The policy value should be specified in milliseconds. Values are clamped to a range of 30 seconds to 24 hours.</translation>
171 <translation id="9200828125069750521">Parameters for image URL which uses POST</translation>
172 <translation id="2769952903507981510">Configure the required domain name for remote access hosts</translation>
173 <translation id="8294750666104911727">Normally pages with X-UA-Compatible set to chrome=1 will be rendered in <ph name="PRODUCT_FRAME_NAME"/> regardless of the 'ChromeFrameRendererSettings' policy.
175 If you enable this setting, pages will not be scanned for meta tags.
177 If you disable this setting, pages will be scanned for meta tags.
179 If this policy is not set, pages will be scanned for meta tags.</translation>
180 <translation id="3478024346823118645">Wipe user data on sign-out</translation>
181 <translation id="8668394701842594241">Specifies a list of plug-ins that are enabled in <ph name="PRODUCT_NAME"/> and prevents users from changing this setting.
183 The wild card characters '*' and '?' can be used to match sequences of arbitrary characters. '*' matches an arbitrary number of characters while '?' specifies an optional single character, i.e. matches zero or one characters. The escape character is '\', so to match actual '*', '?' or '\' characters, you can put a '\' in front of them.
185 The specified list of plug-ins is always used in <ph name="PRODUCT_NAME"/> if they are installed. The plug-ins are marked as enabled in 'about:plug-ins' and users cannot disable them.
187 Note that this policy overrides both DisabledPlug-ins and DisabledPlug-insExceptions.
189 If this policy is left unset, the user can disable any plug-in installed on the system.</translation>
190 <translation id="653608967792832033">Specifies the length of time without user input after which the screen is locked when running on battery power.
192 When this policy is set to a value greater than zero, it specifies the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> locks the screen.
194 When this policy is set to zero, <ph name="PRODUCT_OS_NAME"/> does not lock the screen when the user becomes idle.
196 When this policy is unset, a default length of time is used.
198 The recommended way to lock the screen on idle is to enable screen locking on suspend and have <ph name="PRODUCT_OS_NAME"/> suspend after the idle delay. This policy should only be used when screen locking should occur a significant amount of time sooner than suspend or when suspend on idle is not desired at all.
200 The policy value should be specified in milliseconds. Values are clamped to be less than the idle delay.</translation>
201 <translation id="979541737284082440">(This document may include policies that are targeted for later
202 <ph name="PRODUCT_NAME"/> versions; those are
203 subject to change without notice. The list of supported policies is the
204 same for Chromium and Google Chrome.)
206 You don't need to change these settings by hand! You can download easy-to-use templates from
207 <ph name="POLICY_TEMPLATE_DOWNLOAD_URL"/>.
209 These policies are strictly intended to be used to configure instances of Chrome internal to your organisation. Use of these policies outside your organisation (for example, in a publicly distributed programme) is considered malware and will likely be labelled as malware by Google and anti-virus vendors.
211 Note: Starting with <ph name="PRODUCT_NAME"/>
212 28, policies are loaded directly from the Group Policy API on
213 Windows. Policies manually written to the registry will be ignored. See
214 http://crbug.com/259236 for details.
216 Starting with <ph name="PRODUCT_NAME"/> 35, policies are read directly from the registry if the workstation is joined to an Active Directory domain; otherwise the policies are read from GPO.</translation>
217 <translation id="4157003184375321727">Report OS and firmware version</translation>
218 <translation id="5255162913209987122">Can be Recommended</translation>
219 <translation id="1861037019115362154">Specifies a list of plugins that are disabled in <ph name="PRODUCT_NAME"/> and prevents users from changing this setting.
221 The wildcard characters '*' and '?' can be used to match sequences of arbitrary characters. '*' matches an arbitrary number of characters while '?' specifies an optional single character, i.e. matches zero or one characters. The escape character is '\', so to match actual '*', '?', or '\' characters, you can put a '\' in front of them.
223 If you enable this setting, the specified list of plugins is never used in <ph name="PRODUCT_NAME"/>. The plugins are marked as disabled in 'about:plugins' and users cannot enable them.
225 Note that this policy can be overridden by EnabledPlugins and DisabledPluginsExceptions.
227 If this policy is left not set the user can use any plugin installed on the system except for hard-coded incompatible, outdated or dangerous plugins.</translation>
228 <translation id="9197740283131855199">Percentage by which to scale the screen dim delay if the user becomes active after dimming</translation>
229 <translation id="1492145937778428165">Specifies the period in milliseconds at which the device management service is queried for device policy information.
231 Setting this policy overrides the default value of 3 hours. Valid values for this policy are in the range from 1800000 (30 minutes) to 86400000 (1 day). Any values not in this range will be clamped to the respective boundary.
233 Leaving this policy not set will make <ph name="PRODUCT_OS_NAME"/> use the default value of 3 hours.</translation>
234 <translation id="3765260570442823273">Duration of the idle log-out warning message</translation>
235 <translation id="7302043767260300182">Screen lock delay when running on AC power</translation>
236 <translation id="7331962793961469250">When set to True, promotions for Chrome Web Store apps will not appear on the new tab page.
238 Setting this option to False or leaving it unset will make the promotions for Chrome Web Store apps appear on the new tab page</translation>
239 <translation id="7271085005502526897">Import of homepage from default browser on first run</translation>
240 <translation id="6036523166753287175">Enable firewall traversal from remote access host</translation>
241 <translation id="1096105751829466145">Default search provider</translation>
242 <translation id="7567380065339179813">Allow plug-ins on these sites</translation>
243 <translation id="4555850956567117258">Enable remote attestation for the user</translation>
244 <translation id="5966615072639944554">Extensions allowed to to use the remote attestation API</translation>
245 <translation id="1617235075406854669">Enable deleting browser and download history</translation>
246 <translation id="5290940294294002042">Specify a list of plug-ins that the user can enable or disable</translation>
247 <translation id="3153348162326497318">Allows you to specify which extensions the users CANNOT install. Extensions already installed will be removed if blacklisted.
249 A blacklist value of '*' means all extensions are blacklisted unless they are explicitly listed in the whitelist.
251 If this policy is left unset, the user can install any extension in <ph name="PRODUCT_NAME"/>.</translation>
252 <translation id="3067188277482006117">If true, the user can use the hardware on Chrome devices to remote attest its identity to the privacy CA via the Enterprise Platform Keys API chrome.enterprise.platformKeysPrivate.challengeUserKey().
254 If it is set to false, or if it is not set, calls to the API will fail with an error code.</translation>
255 <translation id="5809728392451418079">Set the display name for device-local accounts</translation>
256 <translation id="1427655258943162134">Address or URL of proxy server</translation>
257 <translation id="1827523283178827583">Use fixed proxy servers</translation>
258 <translation id="3021409116652377124">Disable plug-in finder</translation>
259 <translation id="7236775576470542603">Set the default type of screen magnifier that is enabled on the login screen.
261 If this policy is set, it controls the type of screen magnifier that is enabled when the login screen is shown. Setting the policy to &quot;None&quot; disables the screen magnifier.
263 If you set this policy, users can temporarily override it by enabling or disabling the screen magnifier. However, the user's choice is not persistent and the default is restored whenever the login screen is shown anew or the user remains idle on the login screen for a minute.
265 If this policy is left unset, the screen magnifier is disabled when the login screen is first shown. Users can enable or disable the screen magnifier at any time and its status on the login screen is persisted between users.</translation>
266 <translation id="5423001109873148185">This policy forces search engines to be imported from the current default browser, if enabled. If enabled, this policy also affects the import dialogue.
268 If disabled, the default search engine is not imported.
270 If it is not set, the user may be asked whether to import or importing may happen automatically.</translation>
271 <translation id="3288595667065905535">Release channel</translation>
272 <translation id="2785954641789149745">Enables <ph name="PRODUCT_NAME"/>'s Safe Browsing feature and prevents users from changing this setting.
274 If you enable this setting, Safe Browsing is always active.
276 If you disable this setting, Safe Browsing is never active.
278 If you enable or disable this setting, users cannot change or override the &quot;Enable phishing and malware protection&quot; setting in <ph name="PRODUCT_NAME"/>.
280 If this policy is left not set, this will be enabled but the user will be able to change it.</translation>
281 <translation id="268577405881275241">Enable the data compression proxy feature</translation>
282 <translation id="3820526221169548563">Enable the on-screen keyboard accessibility feature.
284 If this policy is set to true, the on-screen keyboard will always be enabled.
286 If this policy is set to false, the on-screen keyboard will always be disabled.
288 If you set this policy, users cannot change or override it.
290 If this policy is left unset, the on-screen keyboard is disabled initially but can be enabled by the user at any time.</translation>
291 <translation id="8369602308428138533">Screen off delay when running on AC power</translation>
292 <translation id="6513756852541213407">Allows you to specify the proxy server used by <ph name="PRODUCT_NAME"/> and prevents users from changing proxy settings.
294 If you choose to never use a proxy server and always connect directly, all other options are ignored.
296 If you choose to use system proxy settings or auto-detect the proxy server, all other options are ignored.
298 If you choose fixed server proxy mode, you can specify further options in 'Address or URL of proxy server' and 'Comma-separated list of proxy bypass rules'.
300 If you choose to use a .pac proxy script, you must specify the URL to the script in 'URL to a proxy .pac file'.
302 For detailed examples, visit:
303 <ph name="PROXY_HELP_URL"/>
305 If you enable this setting, <ph name="PRODUCT_NAME"/> ignores all proxy-related options specified from the command line.
307 Leaving this policy unset will allow the users to choose the proxy settings on their own.</translation>
308 <translation id="7763311235717725977">Allows you to set whether websites are allowed to display images. Displaying images can be either allowed for all websites or denied for all websites.
310 If this policy is left unset, 'AllowImages' will be used and the user will be able to change it.</translation>
311 <translation id="5630352020869108293">Restore the last session</translation>
312 <translation id="2067011586099792101">Block access to sites outside of content packs</translation>
313 <translation id="4980635395568992380">Data Types</translation>
314 <translation id="3096595567015595053">List of enabled plug-ins</translation>
315 <translation id="3048744057455266684">If this policy is set and a search URL suggested from the omnibox contains this parameter in the query string or in the fragment identifier, then the suggestion will show the search terms and search provider instead of the raw search URL.
317 This policy is optional. If not set, no search term replacement will be performed.
319 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
320 <translation id="5912364507361265851">Allow users to show passwords in Password Manager</translation>
321 <translation id="5318185076587284965">Enable the use of relay servers by the remote access host</translation>
322 <translation id="510186355068252378">Disables data synchronisation in <ph name="PRODUCT_NAME"/> using Google-hosted synchronisation services and prevents users from changing this setting.
324 If you enable this setting, users cannot change or override this setting in <ph name="PRODUCT_NAME"/>.
326 If this policy is left unset, Google Sync will be available for the user to choose whether to use it or not.</translation>
327 <translation id="7953256619080733119">Managed user manual exception hosts</translation>
328 <translation id="4807950475297505572">Least recently used users are removed until there is enough free space</translation>
329 <translation id="8789506358653607371">Allow full screen mode.
331 This policy controls the availability of full screen mode in which all <ph name="PRODUCT_NAME"/> UI is hidden and only web content is visible.
333 If this policy is set to true or not configured, the user, apps and extensions with appropriate permissions can enter full screen mode.
335 If this policy is set to false, neither the user nor any apps or extensions can enter full screen mode.
337 On all platforms except <ph name="PRODUCT_OS_NAME"/>, kiosk mode is unavailable when full screen mode is disabled.</translation>
338 <translation id="8828766846428537606">Configure the default home page in <ph name="PRODUCT_NAME"/> and prevent users from changing it.
340 The user's home page settings are only completely locked down, if you either select the home page to be the new tab page, or set it to be a URL and specify a home page URL. If you don't specify the home page URL, then the user is still able to set the home page to the new tab page by specifying 'chrome://newtab'.</translation>
341 <translation id="2231817271680715693">Import browsing history from default browser on first run</translation>
342 <translation id="1353966721814789986">Startup pages:</translation>
343 <translation id="7173856672248996428">Ephemeral profile</translation>
344 <translation id="1841130111523795147">Allows the user to sign in to <ph name="PRODUCT_NAME"/> and prevents users from changing this setting.
346 If you set this policy, you can configure if a user is allowed to sign in to <ph name="PRODUCT_NAME"/> or not.</translation>
347 <translation id="5564962323737505851">Configures the password manager. If the password manager is enabled, then you can choose to enable or disable whether the user may show stored passwords in clear text.</translation>
348 <translation id="4668325077104657568">Default images setting</translation>
349 <translation id="4492287494009043413">Disable taking screenshots</translation>
350 <translation id="6368403635025849609">Allow JavaScript on these sites</translation>
351 <translation id="6074963268421707432">Do not allow any site to show desktop notifications</translation>
352 <translation id="8614804915612153606">Disables Auto Update</translation>
353 <translation id="4834526953114077364">Least recently used users who have not logged in within the last 3 months are removed until there is enough free space</translation>
354 <translation id="382476126209906314">Configure the TalkGadget prefix for remote access hosts</translation>
355 <translation id="6561396069801924653">Show accessibility options in system tray menu</translation>
356 <translation id="8104962233214241919">Automatically select client certificates for these sites</translation>
357 <translation id="2906874737073861391">List of AppPack extensions</translation>
358 <translation id="4386578721025870401">Limit the time for which a user-authenticated via SAML can log in offline.
360 During login, Chrome OS can authenticate against a server (online) or using a cached password (offline).
362 When this policy is set to a value of -1, the user can authenticate offline indefinitely. When this policy is set to any other value, it specifies the length of time since the last online authentication after which the user must use online authentication again.
364 Leaving this policy not set will make <ph name="PRODUCT_OS_NAME"/> use a default time limit of 14 days after which the user must use online authentication again.
366 This policy affects only users who authenticated using SAML.
368 The policy value should be specified in seconds.</translation>
369 <translation id="3758249152301468420">Disable Developer Tools</translation>
370 <translation id="8665076741187546529">Configure the list of force-installed extensions</translation>
371 <translation id="2386768843390156671">Enables user-level installation of Native Messaging hosts.
373 If this setting is enabled then <ph name="PRODUCT_NAME"/> allows
374 usage of Native Messaging hosts installed on user level.
376 If this setting is disabled then <ph name="PRODUCT_NAME"/> will
377 only use Native Messaging hosts installed on system level.
379 If this setting is left not set <ph name="PRODUCT_NAME"/>
380 will allow usage of user-level Native Messaging hosts.</translation>
381 <translation id="410478022164847452">Specifies the length of time without user input after which the idle action is taken when running on AC power.
383 When this policy is set, it specifies the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> takes the idle action, which can be configured separately.
385 When this policy is unset, a default length of time is used.
387 The policy value should be specified in milliseconds.</translation>
388 <translation id="6598235178374410284">User avatar image</translation>
389 <translation id="1675391920437889033">Controls which app/extension types are allowed to be installed.
391 This setting white-lists the allowed types of extension/apps that can be installed in <ph name="PRODUCT_NAME"/>. The value is a list of strings, each of which should be one of the following: &quot;extension&quot;, &quot;theme&quot;, &quot;user_script&quot;, &quot;hosted_app&quot;, &quot;legacy_packaged_app&quot;, &quot;platform_app&quot;. See the Chrome extensions documentation for more information on these types.
393 Note that this policy also affects extensions and apps to be force-installed via ExtensionInstallForcelist.
395 If this setting is configured, extensions/apps which have a type that is not on the list will not be installed.
397 If this settings is left not-configured, no restrictions on the acceptable extension/app types are enforced.</translation>
398 <translation id="6378076389057087301">Specify whether audio activity affects power management</translation>
399 <translation id="8818173863808665831">Report the geographic location of the device.
401 If the policy is not set or set to false, the location will not be reported.</translation>
402 <translation id="4899708173828500852">Enable Safe Browsing</translation>
403 <translation id="4442582539341804154">Enable lock when the device become idle or suspended</translation>
404 <translation id="7719251660743813569">Controls whether usage metrics are reported back to Google. If set to true, <ph name="PRODUCT_OS_NAME"/> will report usage metrics. If not configured or set to false, metrics reporting will be disabled.</translation>
405 <translation id="2372547058085956601">The public session auto-login delay.
407 If the |DeviceLocalAccountAutoLoginId| policy is unset, this policy has no effect. Otherwise:
409 If this policy is set, it determines the amount of time without user activity that should elapse before automatically logging into the public session specified by the |DeviceLocalAccountAutoLoginId| policy.
411 If this policy is unset, 0 milliseconds will be used as the timeout.
413 This policy is specified in milliseconds.</translation>
414 <translation id="7275334191706090484">Managed Bookmarks</translation>
415 <translation id="3570008976476035109">Block plug-ins on these sites</translation>
416 <translation id="8749370016497832113">Enables deleting browser history and download history in <ph name="PRODUCT_NAME"/> and prevents users from changing this setting.
418 Note that even with this policy disabled, the browsing and download history are not guaranteed to be retained: users may be able to edit or delete the history database files directly and the browser itself may expire or archive any or all history items at any time.
420 If this setting is enabled or not set, browsing and download history can be deleted.
422 If this setting is disabled, browsing and download history cannot be deleted.</translation>
423 <translation id="2884728160143956392">Allow session only cookies on these sites</translation>
424 <translation id="3021272743506189340">Disables Google Drive syncing in the Chrome OS Files app when using a cellular connection when set to True. In that case, data is only synced to Google Drive when connected via WiFi or Ethernet.
426 If not set or set to False, then users will be able to transfer files to Google Drive via cellular connections.</translation>
427 <translation id="4655130238810647237">Enables or disables editing bookmarks in <ph name="PRODUCT_NAME"/>.
429 If you enable this setting, bookmarks can be added, removed or modified. This is the default also when this policy is not set.
431 If you disable this setting, bookmarks cannot be added, removed or modified. Existing bookmarks are still available.</translation>
432 <translation id="3496296378755072552">Password manager</translation>
433 <translation id="4372704773119750918">Do not allow enterprise user to be part of multiprofile (primary or secondary)</translation>
434 <translation id="7027785306666625591">Configure power management in <ph name="PRODUCT_OS_NAME"/>.
436 These policies let you configure how <ph name="PRODUCT_OS_NAME"/> behaves when the user remains idle for some amount of time.</translation>
437 <translation id="2565967352111237512">Enables anonymous reporting of usage and crash-related data about <ph name="PRODUCT_NAME"/> to Google and prevents users from changing this setting.
439 If you enable this setting, anonymous reporting of usage and crash-related data is sent to Google.
441 If you disable this setting, anonymous reporting of usage and crash-related data is never sent to Google.
443 If you enable or disable this setting, users cannot change or override this setting in <ph name="PRODUCT_NAME"/>.
445 If this policy is left unset the setting will be what the user chose upon installation / first run.</translation>
446 <translation id="6256787297633808491">System wide flags to be applied on Chrome start-up</translation>
447 <translation id="2516600974234263142">Enables printing in <ph name="PRODUCT_NAME"/> and prevents users from changing this setting.
449 If this setting is enabled or not configured, users can print.
451 If this setting is disabled, users cannot print from <ph name="PRODUCT_NAME"/>. Printing is disabled in the wrench menu, extensions, JavaScript applications etc. It is still possible to print from plugins that bypass <ph name="PRODUCT_NAME"/> while printing. For example, certain Flash applications have the print option in their context menu, which is not covered by this policy.</translation>
452 <translation id="9135033364005346124">Enable <ph name="CLOUD_PRINT_NAME"/> proxy</translation>
453 <translation id="4519046672992331730">Enables search suggestions in <ph name="PRODUCT_NAME"/>'s omnibox and prevents users from changing this setting.
455 If you enable this setting, search suggestions are used.
457 If you disable this setting, search suggestions are never used.
459 If you enable or disable this setting, users cannot change or override this setting in <ph name="PRODUCT_NAME"/>.
461 If this policy is left not set, this will be enabled but the user will be able to change it.</translation>
462 <translation id="6943577887654905793">Mac/Linux preference name:</translation>
463 <translation id="8176035528522326671">Allow enterprise user to be primary multi-profile user only (Default behaviour for enterprise-managed users)</translation>
464 <translation id="6925212669267783763">Configures the directory that <ph name="PRODUCT_FRAME_NAME"/> will use for storing user data.
466 If you set this policy, <ph name="PRODUCT_FRAME_NAME"/> will use the provided directory.
468 See http://www.chromium.org/administrators/policy-list-3/user-data-directory-variables for a list of variables that can be used.
470 If this setting is left not set the default profile directory will be used.</translation>
471 <translation id="8906768759089290519">Enable guest mode</translation>
472 <translation id="348495353354674884">Enable virtual keyboard</translation>
473 <translation id="2168397434410358693">Idle delay when running on AC power</translation>
474 <translation id="838870586332499308">Enable data roaming</translation>
475 <translation id="2292084646366244343"><ph name="PRODUCT_NAME"/> can use a Google web service to help resolve spelling errors. If this setting is enabled, then this service is always used. If this setting is disabled, then this service is never used.
477 Spell checking can still be performed using a downloaded dictionary; this policy only controls the usage of the online service.
479 If this setting is not configured then users can choose whether the spell checking service should be used or not.</translation>
480 <translation id="8782750230688364867">Specifies the percentage by which the screen dim delay is scaled when the device is in presentation mode.
482 If this policy is set, it specifies the percentage by which the screen dim delay is scaled when the device is in presentation mode. When the screen dim delay is scaled, the screen off, screen lock and idle delays get adjusted to maintain the same distances from the screen dim delay as originally configured.
484 If this policy is unset, a default scale factor is used.
486 The scale factor must be 100% or more. Values that would make the screen dim delay in presentation mode shorter than the regular screen dim delay are not allowed.</translation>
487 <translation id="254524874071906077">Set Chrome as Default Browser</translation>
488 <translation id="8112122435099806139">Specifies the clock format be used for the device.
490 This policy configures the clock format to use on the log-in screen and as a default for user sessions. Users can still override the clock format for their account.
492 If the policy is set to true, the device will use a 24-hour clock format. If the policy is set to false, the device will use a 12-hour clock format.
494 If this policy is not set, the device will default to a 24-hour clock format.</translation>
495 <translation id="8764119899999036911">Specifies whether the generated Kerberos SPN is based on the canonical DNS name or the original name entered.
497 If you enable this setting, CNAME lookup will be skipped and the server name will be used as entered.
499 If you disable this setting or leave it unset, the canonical name of the server will be determined via CNAME lookup.</translation>
500 <translation id="5056708224511062314">Screen magnifier disabled</translation>
501 <translation id="4377599627073874279">Allow all sites to show all images</translation>
502 <translation id="7195064223823777550">Specify the action to take when the user closes the lid.
504 When this policy is set, it specifies the action that <ph name="PRODUCT_OS_NAME"/> takes when the user closes the device's lid.
506 When this policy is unset, the default action is taken, which is suspend.
508 If the action is suspend, <ph name="PRODUCT_OS_NAME"/> can separately be configured to either lock or not lock the screen before suspending.</translation>
509 <translation id="3915395663995367577">URL to a proxy .pac file</translation>
510 <translation id="1022361784792428773">Extension IDs the user should be prevented from installing (or * for all)</translation>
511 <translation id="6064943054844745819">Specify a list of deprecated web platform features to re-enable.
513 This policy gives administrators the ability to re-enable deprecated web platform features for a limited time. Features are identified by a string tag and the features corresponding to the tags included in the list specified by this policy will be re-enabled.
515 The following tags are currently defined:
516 - ShowModalDialog_EffectiveUntil20150430
518 If this policy is left not set or the list is empty, all deprecated web platform features will remain disabled.</translation>
519 <translation id="3805659594028420438">Enable TLS domain-bound certificates extension (deprecated)</translation>
520 <translation id="5499375345075963939">This policy is active in retail mode only.
522 When the value of this policy is set and is not 0 then the currently logged in demo user will be logged out automatically after an inactivity time of the specified duration has elapsed.
524 The policy value should be specified in milliseconds.</translation>
525 <translation id="7683777542468165012">Dynamic Policy Refresh</translation>
526 <translation id="1160939557934457296">Disable proceeding from the Safe Browsing warning page</translation>
527 <translation id="8987262643142408725">Disable SSL record splitting</translation>
528 <translation id="4529945827292143461">Customise the list of URL patterns that should always be rendered by the host browser.
530 If this policy is not set, the default renderer will be used for all sites as specified by the 'ChromeFrameRendererSettings' policy.
532 For example patterns see http://www.chromium.org/developers/how-tos/chrome-frame-getting-started.</translation>
533 <translation id="8044493735196713914">Report device boot mode</translation>
534 <translation id="2746016768603629042">This policy is deprecated, please use DefaultJavaScriptSetting instead.
536 Can be used to disable JavaScript in <ph name="PRODUCT_NAME"/>.
538 If this setting is disabled, web pages cannot use JavaScript and the user cannot change that setting.
540 If this setting is enabled or not set, web pages can use JavaScript but the user can change that setting.</translation>
541 <translation id="1942957375738056236">You can specify the URL of the proxy server here.
543 This policy only takes effect if you have selected manual proxy settings at 'Choose how to specify proxy server settings'.
545 You should leave this policy unset if you have selected any other mode for setting proxy policies.
547 For more options and detailed examples, visit:
548 <ph name="PROXY_HELP_URL"/></translation>
549 <translation id="6076008833763548615">Disable mounting of external storage.
551 When this policy is set to true, external storage will not be available in the file browser.
553 This policy affects all types of storage media. For example: USB flash drives, external hard drives, SD and other memory cards, optical storage etc. Internal storage is not affected, therefore files saved in the Download folder can still be accessed. Google Drive is also not affected by this policy.
555 If this setting is disabled or not configured then users can use all supported types of external storage on their device.</translation>
556 <translation id="6936894225179401731">Specifies the maximal number of simultaneous connections to the proxy server.
558 Some proxy servers can not handle high number of concurrent connections per client and this can be solved by setting this policy to a lower value.
560 The value of this policy should be lower than 100 and higher than 6 and the default value is 32.
562 Some web apps are known to consume many connections with hanging GETs, so lowering below 32 may lead to browser networking hangs if too many such web apps are open. Lower below the default at your own risk.
564 If this policy is left not set the default value will be used which is 32.</translation>
565 <translation id="5395271912574071439">Enables curtaining of remote access hosts while a connection is in progress.
567 If this setting is enabled, then hosts' physical input and output devices are disabled while a remote connection is in progress.
569 If this setting is disabled or not set, then both local and remote users can interact with the host when it is being shared.</translation>
570 <translation id="2488010520405124654">Enable network configuration prompt when offline.
572 If this policy is unset or set to True and a device-local account is configured for zero-delay auto-login and the device does not have access to the Internet, <ph name="PRODUCT_OS_NAME"/> will show a network configuration prompt.
574 If this policy is set to False, an error message will be displayed instead of the network configuration prompt.</translation>
575 <translation id="1426410128494586442">Yes</translation>
576 <translation id="4897928009230106190">Specifies the parameters used when doing suggestion search with POST. It consists of comma-separated name/value pairs. If a value is a template parameter, like {searchTerms} in above example, it will be replaced with real search terms data.
578 This policy is optional. If not set, suggest search request will be sent using the GET method.
580 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
581 <translation id="8140204717286305802">Report list of network interfaces with their types and hardware addresses to the server.
583 If the policy is set to false, the interface list will not be reported.</translation>
584 <translation id="4962195944157514011">Specifies the URL of the search engine used when doing a default search. The URL should contain the string '<ph name="SEARCH_TERM_MARKER"/>', which will be replaced at query time by the terms the user is searching for.
586 This option must be set when the 'DefaultSearchProviderEnabled' policy is enabled and will only be respected if this is the case.</translation>
587 <translation id="6009903244351574348">Allow <ph name="PRODUCT_FRAME_NAME"/> to handle the listed content types.
589 If this policy is not set the default renderer will be used for all sites as specified by the 'ChromeFrameRendererSettings' policy.</translation>
590 <translation id="3381968327636295719">Use the host browser by default</translation>
591 <translation id="3627678165642179114">Enable or disable spell checking web service</translation>
592 <translation id="6520802717075138474">Import search engines from default browser on first run</translation>
593 <translation id="4039085364173654945">Controls whether third-party sub-content on a page is allowed to pop up an HTTP Basic Auth dialogue box.
595 Typically this is disabled as a phishing defence. If this policy is not set, this is disabled and third-party sub-content will not be allowed to pop up a HTTP Basic Auth dialogue box.</translation>
596 <translation id="4946368175977216944">Specifies the flags that should be applied to Chrome when it starts. The specified flags are applied before Chrome is started even for the sign-in screen.</translation>
597 <translation id="7447786363267535722">Enables saving passwords and using saved passwords in <ph name="PRODUCT_NAME"/>.
599 If you enable this setting, users can have <ph name="PRODUCT_NAME"/> memorise passwords and provide them automatically the next time that they log in to a site.
601 If you disable this setting, users are not able to save passwords or use already saved passwords.
603 If you enable or disable this setting, users cannot change or override this setting in <ph name="PRODUCT_NAME"/>.
605 If this policy is left unset, this will be enabled but the user will be able to change it.</translation>
606 <translation id="1138294736309071213">This policy is active in retail mode only.
608 Determines the duration before the screen saver is shown on the sign-in screen for devices in retail mode.
610 The policy value should be specified in milliseconds.</translation>
611 <translation id="6368011194414932347">Configure the home page URL</translation>
612 <translation id="2877225735001246144">Disable CNAME lookup when negotiating Kerberos authentication</translation>
613 <translation id="9120299024216374976">Specifies the timezone to be used for the device. Users can override the specified timezone for the current session. However, on logout it is set back to the specified timezone. If an invalid value is provided, the policy is still activated using &quot;GMT&quot; instead. If an empty string is provided, the policy is ignored.
615 If this policy is not used, the currently active timezone will remain in use however users can change the timezone and the change is persistent. Thus a change by one user affects the login-screen and all other users.
617 New devices start out with the timezone set to &quot;US/Pacific&quot;.
619 The format of the value follows the names of timezones in the &quot;IANA Time Zone Database&quot; (see &quot;http://en.wikipedia.org/wiki/List_of_tz_database_time&quot;). In particular, most timezones can be referred to by &quot;continent/large_city&quot; or &quot;ocean/large_city&quot;.</translation>
620 <translation id="3646859102161347133">Set screen magnifier type</translation>
621 <translation id="3528000905991875314">Enable alternate error pages</translation>
622 <translation id="1283072268083088623">Specifies which HTTP Authentication schemes are supported by <ph name="PRODUCT_NAME"/>.
624 Possible values are 'basic', 'digest', 'ntlm' and 'negotiate'. Separate multiple values with commas.
626 If this policy is left unset, all four schemes will be used.</translation>
627 <translation id="1017967144265860778">Power management on the login screen</translation>
628 <translation id="4914647484900375533">Enables <ph name="PRODUCT_NAME"/>'s Instant feature and prevents users from changing this setting.
630 If you enable this setting, <ph name="PRODUCT_NAME"/> Instant is enabled.
632 If you disable this setting, <ph name="PRODUCT_NAME"/> Instant is disabled.
634 If you enable or disable this setting, users cannot change or override this setting.
636 If this setting is left not set the user can decide to use this function or not.
638 This setting has been removed from Chrome 29 and higher versions.</translation>
639 <translation id="6114416803310251055">deprecated</translation>
640 <translation id="8493645415242333585">Disable saving browser history</translation>
641 <translation id="2747783890942882652">Configures the required host domain name that will be imposed on remote access hosts and prevents users from changing it.
643 If this setting is enabled, then hosts can be shared only using accounts registered on the specified domain name.
645 If this setting is disabled or not set, then hosts can be shared using any account.</translation>
646 <translation id="6417861582779909667">Allows you to set a list of url patterns that specify sites which are not allowed to set cookies.
648 If this policy is left unset, the global default value will be used for all sites, either from the 'DefaultCookiesSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
649 <translation id="5776485039795852974">Ask every time a site wants to show desktop notifications</translation>
650 <translation id="5047604665028708335">Allow access to sites outside of content packs</translation>
651 <translation id="5052081091120171147">This policy forces the browsing history to be imported from the current default browser, if enabled. If enabled, this policy also affects the import dialogue.
653 If disabled, no browsing history is imported.
655 If it is not set, the user may be asked whether to import or importing may happen automatically.</translation>
656 <translation id="6786747875388722282">Extensions</translation>
657 <translation id="7132877481099023201">URLs that will be granted access to video capture devices without prompt</translation>
658 <translation id="8947415621777543415">Report device location</translation>
659 <translation id="1655229863189977773">Set disk cache size in bytes</translation>
660 <translation id="3358275192586364144">Enables WPAD optimisation in <ph name="PRODUCT_NAME"/> and prevents users from changing this setting.
662 Setting this to enabled causes Chrome to wait for a shorter interval for DNS-based WPAD servers.
664 If this policy is left unset, this will be enabled and the user will not
665 be able to change it.</translation>
666 <translation id="6376842084200599664">Allows you to specify a list of extensions that will be installed silently, without user interaction.
668 Each item of the list is a string that contains an extension ID and an update URL delimited by a semicolon (<ph name="SEMICOLON"/>). The extension ID is the 32-letter string found e.g. on <ph name="CHROME_EXTENSIONS_LINK"/> when in developer mode. The update URL should point to an Update Manifest XML document as described at <ph name="LINK_TO_EXTENSION_DOC1"/>. Note that the update URL set in this policy is only used for the initial installation; subsequent updates of the extension will use the update URL indicated in the extension's manifest.
670 For each item, <ph name="PRODUCT_NAME"/> will retrieve the extension specified by the extension ID from the update service at the specified update URL and silently install it.
672 For example, <ph name="EXTENSION_POLICY_EXAMPLE"/> installs the <ph name="EXTENSION_POLICY_EXAMPLE_EXTENSION_NAME"/> extension from the standard Chrome Web Store update URL. For more information about hosting extensions, see: <ph name="LINK_TO_EXTENSION_DOC2"/>.
674 Users will be unable to uninstall extensions that are specified by this policy. If you remove an extension from this list, then it will be automatically uninstalled by <ph name="PRODUCT_NAME"/>. Extensions specified in this list are also automatically whitelisted for installation; the ExtensionsInstallBlacklist does not affect them.
676 If this policy is left not set the user can uninstall any extension in <ph name="PRODUCT_NAME"/>.</translation>
677 <translation id="6899705656741990703">Auto detect proxy settings</translation>
678 <translation id="4639407427807680016">Names of the native messaging hosts to be exempt from the blacklist</translation>
679 <translation id="8382184662529825177">Enable the use of remote attestation for content protection for the device</translation>
680 <translation id="7003334574344702284">This policy forces the saved passwords to be imported from the previous default browser, if enabled. If enabled, this policy also affects the import dialogue.
682 If disabled, the saved passwords are not imported.
684 If it is not set, the user may be asked whether to import or importing may happen automatically.</translation>
685 <translation id="6258193603492867656">Specifies whether the generated Kerberos SPN should include a non-standard port. If you enable this setting, and a non-standard port (i.e. a port other than 80 or 443) is entered, it will be included in the generated Kerberos SPN. If you disable this setting, the generated Kerberos SPN will not include a port in any case.</translation>
686 <translation id="3236046242843493070">URL patterns to allow extension, app, and user script installs from</translation>
687 <translation id="2498238926436517902">Always auto-hide the shelf</translation>
688 <translation id="253135976343875019">Idle warning delay when running on AC power</translation>
689 <translation id="480987484799365700">If set to enabled this policy forces the profile to be switched to ephemeral mode. If this policy is specified as an OS policy (e.g. GPO on Windows) it will apply to every profile on the system; if the policy is set as a Cloud policy it will apply only to a profile signed in with a managed account.
691 In this mode the profile data is persisted on disk only for the length of the user session. Features like browser history, extensions and their data, web data like cookies and web databases are not preserved after the browser is closed. However this does not prevent the user from downloading any data to disk manually, save pages or print them.
693 If the user has enabled sync all this data is preserved in his sync profile just like with regular profiles. Incognito mode is also available if not explicitly disabled by policy.
695 If the policy is set to disabled or left not set signing in leads to regular profiles.</translation>
696 <translation id="6997592395211691850">Whether online OCSP/CRL checks are required for local trust anchors</translation>
697 <translation id="152657506688053119">List of alternative URLs for the default search provider</translation>
698 <translation id="8992176907758534924">Do not allow any site to show images</translation>
699 <translation id="262740370354162807">Enable submission of documents to <ph name="CLOUD_PRINT_NAME"/></translation>
700 <translation id="7717938661004793600">Configure <ph name="PRODUCT_OS_NAME"/> accessibility features.</translation>
701 <translation id="5182055907976889880">Configure Google Drive in <ph name="PRODUCT_OS_NAME"/>.</translation>
702 <translation id="8704831857353097849">List of disabled plug-ins</translation>
703 <translation id="467449052039111439">Open a list of URLs</translation>
704 <translation id="1988371335297483117">Auto-update payloads on <ph name="PRODUCT_OS_NAME"/> can be downloaded via HTTP instead of HTTPS. This allows transparent HTTP caching of HTTP downloads.
706 If this policy is set to true, <ph name="PRODUCT_OS_NAME"/> will attempt to download auto-update payloads via HTTP. If the policy is set to false or not set, HTTPS will be used for downloading auto-update payloads.</translation>
707 <translation id="5883015257301027298">Default cookies setting</translation>
708 <translation id="5017500084427291117">Blocks access to the listed URLs.
710 This policy prevents the user from loading web pages from blacklisted URLs.
712 A URL has the format 'scheme://host:port/path'.
713 The optional scheme can be http, https or ftp. Only this scheme will be blocked; if none is specified, all schemes are blocked.
714 The host can be a hostname or an IP address. Subdomains of a hostname will also be blocked. To prevent blocking subdomains, include a '.' before the hostname. The special hostname '*' will block all domains.
715 The optional port is a valid port number from 1 to 65535. If none is specified, all ports are blocked.
716 If the optional path is specified, only paths with that prefix will be blocked.
718 Exceptions can be defined in the URL whitelist policy. These policies are limited to 1000 entries; subsequent entries will be ignored.
720 If this policy is not set no URL will be blacklisted in the browser.</translation>
721 <translation id="2762164719979766599">Specifies the list of device-local accounts to be shown on the login screen.
723 Every list entry specifies an identifier, which is used internally to tell the different device-local accounts apart.</translation>
724 <translation id="8955719471735800169">Back to top</translation>
725 <translation id="4557134566541205630">Default search provider new tab page URL</translation>
726 <translation id="546726650689747237">Screen dim delay when running on AC power</translation>
727 <translation id="4988291787868618635">Action to take when the idle delay is reached</translation>
728 <translation id="7260277299188117560">Auto update p2p enabled</translation>
729 <translation id="5316405756476735914">Allows you to set whether websites are allowed to set local data. Setting local data can be either allowed for all websites or denied for all websites.
731 If this policy is left unset, 'AllowCookies' will be used and the user will be able to change it.</translation>
732 <translation id="4250680216510889253">No</translation>
733 <translation id="1522425503138261032">Allow sites to track the users' physical location</translation>
734 <translation id="6467433935902485842">Allows you to set a list of url patterns that specify sites which are not allowed to run plug-ins.
736 If this policy is left unset the global default value will be used for all sites either from the 'DefaultPlug-insSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
737 <translation id="4423597592074154136">Manually specify proxy settings</translation>
738 <translation id="209586405398070749">Stable channel</translation>
739 <translation id="8170878842291747619">Enables the integrated Google Translate service on <ph name="PRODUCT_NAME"/>.
741 If you enable this setting, <ph name="PRODUCT_NAME"/> will show an integrated toolbar offering to translate the page for the user, when appropriate.
743 If you disable this setting, users will never see the translation bar.
745 If you enable or disable this setting, users cannot change or override this setting in <ph name="PRODUCT_NAME"/>.
747 If this setting is left unset the user can decide to use this function or not.</translation>
748 <translation id="9035964157729712237">Extension IDs to exempt from the blacklist</translation>
749 <translation id="8244525275280476362">Maximum fetch delay after a policy invalidation</translation>
750 <translation id="8587229956764455752">Allow creation of new user accounts</translation>
751 <translation id="7417972229667085380">Percentage by which to scale the idle delay in presentation mode (deprecated)</translation>
752 <translation id="6211428344788340116">Report device activity times.
754 If this setting is not set or set to True, enrolled devices will report time periods when a user is active on the device. If this setting is set to False, device activity times will not be recorded or reported.</translation>
755 <translation id="3964909636571393861">Allows access to a list of URLs</translation>
756 <translation id="1811270320106005269">Enable lock when <ph name="PRODUCT_OS_NAME"/> devices become idle or suspended.
758 If you enable this setting, users will be asked for a password to unlock the device from sleep.
760 If you disable this setting, users will not be asked for a password to unlock the device from sleep.
762 If you enable or disable this setting, users cannot change or override it.
764 If the policy is left not set, the user can choose whether he wants to be asked for password to unlock the device or not.</translation>
765 <translation id="383466854578875212">Allows you to specify which native messaging hosts are not subject to the blacklist.
767 A blacklist value of * means that all native messaging hosts are blacklisted and only native messaging hosts listed in the whitelist will be loaded.
769 By default, all native messaging hosts are whitelisted, but if all native messaging hosts have been blacklisted by policy, the whitelist can be used to override that policy.</translation>
770 <translation id="6022948604095165524">Action on start-up</translation>
771 <translation id="9042911395677044526">Allows pushing network configuration to be applied per-user to a <ph name="PRODUCT_OS_NAME"/> device. The network configuration is a JSON-formatted string as defined by the Open Network Configuration format described at <ph name="ONC_SPEC_URL"/></translation>
772 <translation id="7128918109610518786">Lists the application identifiers <ph name="PRODUCT_OS_NAME"/> shows as pinned apps in the launcher bar.
774 If this policy is configured, the set of applications is fixed and can't be changed by the user.
776 If this policy is left unset, the user may change the list of pinned apps in the launcher.</translation>
777 <translation id="1679420586049708690">Public session for auto-login</translation>
778 <translation id="5836064773277134605">Restrict the UDP port range used by the remote access host</translation>
779 <translation id="7625444193696794922">Specifies the release channel that this device should be locked to.</translation>
780 <translation id="2552966063069741410">Timezone</translation>
781 <translation id="3788662722837364290">Power management settings when the user becomes idle</translation>
782 <translation id="2240879329269430151">Allows you to set whether websites are allowed to show pop-ups. Showing pop-ups can be either allowed for all websites or denied for all websites.
784 If this policy is left unset, 'BlockPop-ups' will be used and the user will be able to change it.</translation>
785 <translation id="2529700525201305165">Restrict which users are allowed to sign in to <ph name="PRODUCT_NAME"/></translation>
786 <translation id="8971221018777092728">Public session auto-login timer</translation>
787 <translation id="8285435910062771358">Full-screen magnifier enabled</translation>
788 <translation id="5141670636904227950">Set the default screen magnifier type enabled on the login screen</translation>
789 <translation id="3864818549971490907"> setting</translation>
790 <translation id="7151201297958662315">Determines whether a <ph name="PRODUCT_NAME"/> process is started on OS login and keeps running when the last browser window is closed, allowing background apps to remain active. The background process displays an icon in the system tray and can always be closed from there.
792 If this policy is set to True, background mode is enabled and cannot be controlled by the user in the browser settings.
794 If this policy is set to False, background mode is disabled and cannot be controlled by the user in the browser settings.
796 If this policy is left unset, background mode is initially disabled and can be controlled by the user in the browser settings.</translation>
797 <translation id="4320376026953250541">Microsoft Windows XP SP2 or later</translation>
798 <translation id="5148753489738115745">Allows you to specify additional parameters that are used when <ph name="PRODUCT_FRAME_NAME"/> launches <ph name="PRODUCT_NAME"/>.
800 If this policy is not set the default command line will be used.</translation>
801 <translation id="2646290749315461919">Allows you to set whether websites are allowed to track the users' physical location. Tracking the users' physical location can be allowed by default, denied by default or the user can be asked every time a website requests the physical location.
803 If this policy is left not set, 'AskGeolocation' will be used and the user will be able to change it.</translation>
804 <translation id="6394350458541421998">This policy has been retired as of <ph name="PRODUCT_OS_NAME"/> version 29. Please use the PresentationScreenDimDelayScale policy instead.</translation>
805 <translation id="2956777931324644324">This policy has been retired as of <ph name="PRODUCT_NAME"/> version 36.
807 Specifies whether the TLS domain-bound certificates extension should be enabled.
809 This setting is used to enable the TLS domain-bound certificates extension for testing. This experimental setting will be removed in the future.</translation>
810 <translation id="5770738360657678870">Dev channel (may be unstable)</translation>
811 <translation id="2959898425599642200">Proxy bypass rules</translation>
812 <translation id="228659285074633994">Specifies the length of time without user input after which a warning dialogue is shown when running on AC power.
814 When this policy is set, it specifies the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> shows a warning dialogue telling the user that the idle action is about to be taken.
816 When this policy is unset, no warning dialogue is shown.
818 The policy value should be specified in milliseconds. Values are clamped to be less than or equal the idle delay.</translation>
819 <translation id="1327466551276625742">Enable network configuration prompt when offline</translation>
820 <translation id="7937766917976512374">Allow or deny video capture</translation>
821 <translation id="427632463972968153">Specifies the parameters used when doing image search with POST. It consists of comma-separated name/value pairs. If a value is a template parameter, like {imageThumbnail} in above example, it will be replaced with real image thumbnail data.
823 This policy is optional. If not set, image search request will be sent using the GET method.
825 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
826 <translation id="8818646462962777576">Patterns in this list will be matched against the security
827 origin of the requesting URL. If a match is found, access to audio
828 capture devices will be granted without prompt.
830 NOTE: This policy is currently only supported when running in Kiosk mode.</translation>
831 <translation id="489803897780524242">Parameter controlling search term placement for the default search provider</translation>
832 <translation id="316778957754360075">This setting has been retired as of <ph name="PRODUCT_NAME"/> version 29. The recommended way to set up organisation-hosted extension/app collections is to include the site hosting the CRX packages in ExtensionInstallSources and put direct download links to the packages on a web page. A launcher for that web page can be created using the ExtensionInstallForcelist policy.</translation>
833 <translation id="6401669939808766804">Log the user out</translation>
834 <translation id="4826326557828204741">Action to take when the idle delay is reached while running on battery power</translation>
835 <translation id="7912255076272890813">Configure allowed app/extension types</translation>
836 <translation id="817455428376641507">Allows access to the listed URLs, as exceptions to the URL blacklist.
838 See the description of the URL blacklist policy for the format of entries of this list.
840 This policy can be used to open exceptions to restrictive blacklists. For example, '*' can be blacklisted to block all requests, and this policy can be used to allow access to a limited list of URLs. It can be used to open exceptions to certain schemes, subdomains of other domains, ports or specific paths.
842 The most specific filter will determine if a URL is blocked or allowed. The whitelist takes precedence over the blacklist.
844 This policy is limited to 1000 entries; subsequent entries will be ignored.
846 If this policy is not set there will be no exceptions to the blacklist from the 'URLBlacklist' policy.</translation>
847 <translation id="8148901634826284024">Enable the high contrast mode accessibility feature.
849 If this policy is set to true, high contrast mode will always be enabled.
851 If this policy is set to false, high contrast mode will always be disabled.
853 If you set this policy, users cannot change or override it.
855 If this policy is left unset, high contrast mode is disabled initially but can be enabled by the user at any time.</translation>
856 <translation id="2201555246697292490">Configure native messaging whitelist</translation>
857 <translation id="6177482277304066047">Sets a target version for Auto Updates.
859 Specifies the prefix of a target version <ph name="PRODUCT_OS_NAME"/> should update to. If the device is running a version that's before the specified prefix, it will update to the latest version with the given prefix. If the device is already on a later version, there is no effect (i.e. no downgrades are performed) and the device will remain on the current version. The prefix format works component-wise as is demonstrated in the following example:
861 &quot;&quot; (or not configured): update to latest version available.
862 &quot;1412.&quot;: update to any minor version of 1412 (e.g. 1412.24.34 or 1412.60.2)
863 &quot;1412.2.&quot;: update to any minor version of 1412.2 (e.g. 1412.2.34 or 1412.2.2)
864 &quot;1412.24.34&quot;: update to this specific version only</translation>
865 <translation id="8102913158860568230">Default mediastream setting</translation>
866 <translation id="6641981670621198190">Disable support for 3D graphics APIs</translation>
867 <translation id="5196805177499964601">Block developer mode.
869 If this policy is set to True, <ph name="PRODUCT_OS_NAME"/> will prevent the device from booting into developer mode. The system will refuse to boot and show an error screen when the developer switch is turned on.
871 If this policy is unset or set to False, developer mode will remain available for the device.</translation>
872 <translation id="1265053460044691532">Limit the time for which a user authenticated via SAML can log in offline</translation>
873 <translation id="5703863730741917647">Specify the action to take when the idle delay is reached.
875 Note that this policy is deprecated and will be removed in the future.
877 This policy provides a fallback value for the more-specific <ph name="IDLEACTIONAC_POLICY_NAME"/> and <ph name="IDLEACTIONBATTERY_POLICY_NAME"/> policies. If this policy is set, its value gets used if the respective more-specific policy is not set.
879 When this policy is unset, behaviour of the more-specific policies remains unaffected.</translation>
880 <translation id="5997543603646547632">Use 24 hour clock by default</translation>
881 <translation id="7003746348783715221"><ph name="PRODUCT_NAME"/> preferences</translation>
882 <translation id="4723829699367336876">Enable firewall traversal from remote access client</translation>
883 <translation id="2744751866269053547">Register protocol handlers</translation>
884 <translation id="6367755442345892511">Whether the release channel should be configurable by the user</translation>
885 <translation id="3868347814555911633">This policy is active in retail mode only.
887 Lists extensions that are automatically installed for the Demo user, for devices in retail mode. These extensions are saved in the device and can be installed while offline, after the installation.
889 Each list entry contains a dictionary that must include the extension ID in the 'extension-id' field, and its update URL in the 'update-url' field.</translation>
890 <translation id="9096086085182305205">Authentication server whitelist</translation>
891 <translation id="4980301635509504364">Allow or deny video capture.
893 If enabled or not configured (default), the user will be prompted for
894 video capture access except for URLs configured in the
895 VideoCaptureAllowedUrls list which will be granted access without prompting.
897 When this policy is disabled, the user will never be prompted and video
898 capture only be available to URLs configured in VideoCaptureAllowedUrls.
900 This policy affects all types of video inputs and not only the built-in camera.</translation>
901 <translation id="7063895219334505671">Allow pop-ups on these sites</translation>
902 <translation id="3756011779061588474">Block developer mode</translation>
903 <translation id="4052765007567912447">Controls whether the user may show passwords in clear text in the password manager.
905 If you disable this setting, the password manager does not allow showing stored passwords in clear text in the password manager window.
907 If you enable or do not set this policy, users can view their passwords in clear text in the password manager.</translation>
908 <translation id="5936622343001856595">Forces queries in Google Web Search to be done with SafeSearch set to active and prevents users from changing this setting.
910 If you enable this setting, SafeSearch in Google Search is always active.
912 If you disable this setting or do not set a value, SafeSearch in Google Search is not enforced.</translation>
913 <translation id="6017568866726630990">Show the system print dialogue instead of print preview.
915 When this setting is enabled, <ph name="PRODUCT_NAME"/> will open the system print dialogue instead of the built-in print preview when a user requests a page to be printed.
917 If this policy is not set or is set to false, print commands trigger the print preview screen.</translation>
918 <translation id="7933141401888114454">Enable creation of supervised users</translation>
919 <translation id="2824715612115726353">Enable Incognito mode</translation>
920 <translation id="1057535219415338480">Enables network prediction in <ph name="PRODUCT_NAME"/> and prevents users from changing this setting.
922 This controls not only DNS prefetching but also TCP and SSL preconnection and prerendering of web pages. The policy name refers to DNS prefetching for historical reasons.
924 If you enable or disable this setting, users cannot change or override this setting in <ph name="PRODUCT_NAME"/>.
926 If this policy is left not set, this will be enabled but the user will be able to change it.</translation>
927 <translation id="4541530620466526913">Device-local accounts</translation>
928 <translation id="5815129011704381141">Automatically reboot after update</translation>
929 <translation id="1757688868319862958">Allows <ph name="PRODUCT_NAME"/> to run plug-ins that require authorisation. If you enable this setting, plug-ins that are not outdated always run. If this setting is disabled or not set, users will be asked for permission to run plug-ins that require authorisation. These are plug-ins that can compromise security.</translation>
930 <translation id="6392973646875039351">Enables <ph name="PRODUCT_NAME"/>'s Auto-fill feature and allows users to auto-complete web forms using previously stored information such as address or credit card information.
932 If you disable this setting, Auto-fill will be inaccessible to users.
934 If you enable this setting or do not set a value, Auto-fill will remain under the control of the user. This will allow them to configure Auto-fill profiles and to switch Auto-fill on or off at their own discretion.</translation>
935 <translation id="6157537876488211233">Comma-separated list of proxy bypass rules</translation>
936 <translation id="7788511847830146438">Per Profile</translation>
937 <translation id="2516525961735516234">Specifies whether video activity affects power management.
939 If this policy is set to True or is unset, the user is not considered to be idle while video is playing. This prevents the idle delay, screen dim delay, screen off delay and screen lock delay from being reached and the corresponding actions from being taken.
941 If this policy is set to False, video activity does not prevent the user from being considered idle.</translation>
942 <translation id="3965339130942650562">Timeout until idle user log-out is executed</translation>
943 <translation id="5814301096961727113">Set the default state of spoken feedback on the login screen</translation>
944 <translation id="1950814444940346204">Enable deprecated web platform features</translation>
945 <translation id="9084985621503260744">Specify whether video activity affects power management</translation>
946 <translation id="7091198954851103976">Always runs plug-ins that require authorisation</translation>
947 <translation id="1708496595873025510">Set the restriction on the fetching of the Variations seed</translation>
948 <translation id="8870318296973696995">Homepage</translation>
949 <translation id="1240643596769627465">Specifies the URL of the search engine used to provide instant results. The URL should contain the string <ph name="SEARCH_TERM_MARKER"/>, which will be replaced at query time by the text that the user has entered so far.
951 This policy is optional. If not set, no instant search results will be provided.
953 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
954 <translation id="6693751878507293182">If you set this setting to enabled the automatic search and installation of missing plug-ins will be disabled in <ph name="PRODUCT_NAME"/>.
956 Setting this option to disabled or leave it unset the plug-in finder will be active.</translation>
957 <translation id="2650049181907741121">Action to take when the user closes the lid</translation>
958 <translation id="7880891067740158163">Allows you to specify a list of url patterns that specify sites for which <ph name="PRODUCT_NAME"/> should automatically select a client certificates, if the site requests a certificate.
960 If this policy is left not set no auto-selection will be done for any site.</translation>
961 <translation id="3866249974567520381">Description</translation>
962 <translation id="5192837635164433517">Enables the use of alternative error pages that are built into <ph name="PRODUCT_NAME"/> (such as 'page not found') and prevents users from changing this setting.
964 If you enable this setting, alternative error pages are used.
966 If you disable this setting, alternative error pages are never used.
968 If you enable or disable this setting, users cannot change or override this setting in <ph name="PRODUCT_NAME"/>.
970 If this policy is left unset, this will be enabled but the user will be able to change it.</translation>
971 <translation id="2236488539271255289">Do not allow any site to set local data</translation>
972 <translation id="4467952432486360968">Block third-party cookies</translation>
973 <translation id="1305864769064309495">A dictionary mapping URLs to a boolean flag specifying whether access to the host should be allowed (true) or blocked (false).
975 This policy is for internal use by Chrome itself.</translation>
976 <translation id="5586942249556966598">Do nothing</translation>
977 <translation id="131353325527891113">Show usernames on login screen</translation>
978 <translation id="5365946944967967336">Show Home button on the toolbar</translation>
979 <translation id="3709266154059827597">Configure extension installation blacklist</translation>
980 <translation id="1933378685401357864">Wallpaper image</translation>
981 <translation id="8451988835943702790">Use New Tab Page as homepage</translation>
982 <translation id="4617338332148204752">Skip the meta tag check in <ph name="PRODUCT_FRAME_NAME"/></translation>
983 <translation id="8469342921412620373">Enables the use of a default search provider.
985 If you enable this setting, a default search is performed when the user types text in the omnibox that is not a URL.
987 You can specify the default search provider to be used by setting the rest of the default search policies. If these are left empty, the user can choose the default provider.
989 If you disable this setting, no search is performed when the user enters non-URL text in the omnibox.
991 If you enable or disable this setting, users cannot change or override this setting in <ph name="PRODUCT_NAME"/>.
993 If this policy is left unset, the default search provider is enabled and the user will be able to set the search provider list.</translation>
994 <translation id="4791031774429044540">Enable the large cursor accessibility feature.
996 If this policy is set to true, the large cursor will always be enabled.
998 If this policy is set to false, the large cursor will always be disabled.
1000 If you set this policy, users cannot change or override it.
1002 If this policy is left unset, the large cursor is disabled initially but can be enabled by the user at any time.</translation>
1003 <translation id="2633084400146331575">Enable spoken feedback</translation>
1004 <translation id="687046793986382807">This policy has been retired as of <ph name="PRODUCT_NAME"/> version 35.
1006 Memory info is reported to page anyway, regardless of the option value, but the sizes reported are
1007 quantised and the rate of updates is limited for security reasons. To obtain real-time precise data,
1008 please use tools like Telemetry.</translation>
1009 <translation id="8731693562790917685">Content Settings allow you to specify how contents of a specific type (for example Cookies, Images or JavaScript) is handled.</translation>
1010 <translation id="2411919772666155530">Block notifications from these sites</translation>
1011 <translation id="7332963785317884918">This policy is deprecated. <ph name="PRODUCT_OS_NAME"/> will always use the 'RemoveLRU' clean-up strategy.
1013 Controls the automatic clean-up behaviour on <ph name="PRODUCT_OS_NAME"/> devices. Automatic clean-up is triggered when the amount of free disk space reaches a critical level to recover some disk space.
1015 If this policy is set to 'RemoveLRU', the automatic clean-up will keep removing users from the device in least-recently-logged-in order until there is enough free space.
1017 If this policy is set to 'RemoveLRUIfDormant', the automatic clean-up will keep removing users who have not logged in for at least 3 months in least-recently-logged-in order until there is enough free space.
1019 If this policy is not set, automatic clean-up uses the default built-in strategy. Currently, it is the 'RemoveLRUIfDormant' strategy.</translation>
1020 <translation id="6923366716660828830">Specifies the name of the default search provider. If left empty or not set, the host name specified by the search URL will be used.
1022 This policy is only considered if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
1023 <translation id="4869787217450099946">Specifies whether screen wake locks are allowed. Screen wake locks can be requested by extensions via the power management extension API.
1025 If this policy is set to true or left not set, screen wake locks will be honoured for power management.
1027 If this policy is set to false, screen wake lock requests will be ignored.</translation>
1028 <translation id="467236746355332046">Supported features:</translation>
1029 <translation id="5447306928176905178">Enable reporting memory info (JS heap size) to page (deprecated)</translation>
1030 <translation id="7632724434767231364">GSSAPI library name</translation>
1031 <translation id="3038323923255997294">Continue running background apps when <ph name="PRODUCT_NAME"/> is closed</translation>
1032 <translation id="8909280293285028130">Specifies the length of time without user input after which the screen is locked when running on AC power.
1034 When this policy is set to a value greater than zero, it specifies the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> locks the screen.
1036 When this policy is set to zero, <ph name="PRODUCT_OS_NAME"/> does not lock the screen when the user becomes idle.
1038 When this policy is unset, a default length of time is used.
1040 The recommended way to lock the screen on idle is to enable screen locking on suspend and have <ph name="PRODUCT_OS_NAME"/> suspend after the idle delay. This policy should only be used when screen locking should occur a significant amount of time sooner than suspend or when suspend on idle is not desired at all.
1042 The policy value should be specified in milliseconds. Values are clamped to be less than the idle delay.</translation>
1043 <translation id="7651739109954974365">Determines whether data roaming should be enabled for the device. If set to true, data roaming is allowed. If left unconfigured or set to false, data roaming will be unavailable.</translation>
1044 <translation id="6244210204546589761">URLs to open on start-up</translation>
1045 <translation id="7468416082528382842">Windows registry location:</translation>
1046 <translation id="1808715480127969042">Block cookies on these sites</translation>
1047 <translation id="1908884158811109790">Disables Google Drive over Cellular connections in the Chrome OS Files app</translation>
1048 <translation id="7340034977315324840">Report device activity times</translation>
1049 <translation id="4928632305180102854">Controls whether <ph name="PRODUCT_OS_NAME"/> allows new user accounts to be created. If this policy is set to false, users that do not have an account already will not be able to login.
1051 If this policy is set to true or not configured, new user accounts are allowed to be created, provided that <ph name="DEVICEUSERWHITELISTPROTO_POLICY_NAME"/> does not prevent the user from logging in.</translation>
1052 <translation id="4389091865841123886">Configure the remote attestation with TPM mechanism.</translation>
1053 <translation id="9175109938712007705">In light of the fact that soft-fail, online revocation checks provide no effective security benefit, they are disabled by default in <ph name="PRODUCT_NAME"/> version 19 and later. By setting this policy to true, the previous behaviour is restored and online OCSP/CRL checks will be performed.
1055 If the policy is not set, or is set to false, then Chrome will not perform online revocation checks in Chrome 19 and later.</translation>
1056 <translation id="8256688113167012935">Controls the account name <ph name="PRODUCT_OS_NAME"/> shows on the login screen for the corresponding device-local account.
1058 If this policy is set, the login screen will use the specified string in the picture-based login chooser for the corresponding device-local account.
1060 If the policy is left not set, <ph name="PRODUCT_OS_NAME"/> will use the device-local account's email account ID as the display name on the login screen.
1062 This policy is ignored for regular user accounts.</translation>
1063 <translation id="267596348720209223">Specifies the character encodings supported by the search provider. Encodings are code page names like UTF-8, GB2312, and ISO-8859-1. They are tried in the order provided.
1065 This policy is optional. If not set, the default will be used which is UTF-8.
1067 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
1068 <translation id="1349276916170108723">Disables Google Drive syncing in the Chrome OS Files app when set to True. In that case, no data is uploaded to Google Drive.
1070 If not set or set to False, then users will be able to transfer files to Google Drive.</translation>
1071 <translation id="1964634611280150550">Incognito mode disabled.</translation>
1072 <translation id="5971128524642832825">Disables Drive in the Chrome OS Files app</translation>
1073 <translation id="1847960418907100918">Specifies the parameters used when doing instant search with POST. It consists of comma-separated name/value pairs. If a value is a template parameter, like {searchTerms} in above example, it will be replaced with real search terms data.
1075 This policy is optional. If not set, instant search request will be sent using the GET method.
1077 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
1078 <translation id="6095999036251797924">Specifies the length of time without user input after which the screen is locked when running on AC power or battery.
1080 When the length of time is set to a value greater than zero, it represents the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> locks the screen.
1082 When the length of time is set to zero, <ph name="PRODUCT_OS_NAME"/> does not lock the screen when the user becomes idle.
1084 When the length of time is unset, a default length of time is used.
1086 The recommended way to lock the screen on idle is to enable screen locking on suspend and have <ph name="PRODUCT_OS_NAME"/> suspend after the idle delay. This policy should only be used when screen locking should occur a significant amount of time sooner than suspend or when suspend on idle is not desired at all.
1088 The policy value should be specified in milliseconds. Values are clamped to be less than the idle delay.</translation>
1089 <translation id="1454846751303307294">Allows you to set a list of url patterns that specify sites which are not allowed to run JavaScript.
1091 If this policy is left not set the global default value will be used for all sites either from the 'DefaultJavaScriptSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
1092 <translation id="538108065117008131">Allow <ph name="PRODUCT_FRAME_NAME"/> to handle the following content types.</translation>
1093 <translation id="2312134445771258233">Allows you to configure the pages that are loaded on start-up.
1095 The contents of the list 'URLs to open at start-up' are ignored unless you select 'Open a list of URLs' in 'Action on start-up'.</translation>
1096 <translation id="1464848559468748897">Control the user behaviour in a multi-profile session on <ph name="PRODUCT_OS_NAME"/> devices.
1098 If this policy is set to 'Multi-ProfileUserBehaviourUnrestricted', the user can be either the primary or secondary user in a multi-profile session.
1100 If this policy is set to 'Multi-ProfileUserBehaviourMustBePrimary', the user can only be the primary user in a multi-profile session.
1102 If this policy is set to 'Multi-ProfileUserBehaviourNotAllowed', the user cannot be part of a multi-profile session.
1104 If you set this setting, users cannot change or override it.
1106 If the setting is changed while the user is signed into a multi-profile session, all users in the session will be checked against their corresponding settings. The session will be closed if any one of the users is no longer allowed to be in the session.
1108 If the policy is left not set, the default value 'Multi-ProfileUserBehaviourMustBePrimary' applies for enterprise-managed users and 'Multi-ProfileUserBehaviourUnrestricted' will be used for non-managed users.</translation>
1109 <translation id="243972079416668391">Specify the action to take when the idle delay is reached while running on AC power.
1111 When this policy is set, it specifies the action that <ph name="PRODUCT_OS_NAME"/> takes when the user remains idle for the length of time given by the idle delay, which can be configured separately.
1113 When this policy is unset, the default action is taken, which is suspend.
1115 If the action is suspend, <ph name="PRODUCT_OS_NAME"/> can separately be configured to either lock or not lock the screen before suspending.</translation>
1116 <translation id="7750991880413385988">Open New Tab Page</translation>
1117 <translation id="5761030451068906335">Configures the proxy settings for <ph name="PRODUCT_NAME"/>.
1119 This policy isn't ready for usage yet, please don't use it.</translation>
1120 <translation id="8344454543174932833">Import bookmarks from default browser on first run</translation>
1121 <translation id="1019101089073227242">Set user data directory</translation>
1122 <translation id="5826047473100157858">Specifies whether the user may open pages in Incognito mode in <ph name="PRODUCT_NAME"/>.
1124 If 'Enabled' is selected or the policy is left unset, pages may be opened in Incognito mode.
1126 If 'Disabled' is selected, pages may not be opened in Incognito mode.
1128 If 'Forced' is selected, pages may be opened ONLY in Incognito mode.</translation>
1129 <translation id="2988031052053447965">Hide the Chrome Web Store app and footer link from the New Tab Page and Chrome OS app launcher.
1131 When this policy is set to true, the icons are hidden.
1133 When this policy is set to false or is not configured, the icons are visible.</translation>
1134 <translation id="5085647276663819155">Disable Print Preview</translation>
1135 <translation id="8672321184841719703">Target Auto-Update Version</translation>
1136 <translation id="553658564206262718">Configure power management settings when the user becomes idle.
1138 This policy controls multiple settings for the power management strategy when the user becomes idle.
1140 There are four types of action:
1141 * The screen will be dimmed if the user remains idle for the time specified by |ScreenDim|.
1142 * The screen will be turned off if the user remains idle for the time specified by |ScreenOff|.
1143 * A warning dialogue will be shown if the user remains idle for the time specified by |IdleWarning|, telling the user that the idle action is about to be taken.
1144 * The action specified by |IdleAction| will be taken if the user remains idle for the time specified by |Idle|.
1146 For each of above actions, the delay should be specified in milliseconds, and needs to be set to a value greater than zero to trigger the corresponding action. In case the delay is set to zero, <ph name="PRODUCT_OS_NAME"/> will not take the corresponding action.
1148 For each of the above delays, when the length of time is unset, a default value will be used.
1150 Note that |ScreenDim| values will be clamped to be less than or equal to |ScreenOff|, |ScreenOff| and |IdleWarning| will be clamped to be less than or equal to |Idle|.
1152 |IdleAction| can be one of four possible actions:
1153 * |Suspend|
1154 * |Logout|
1155 * |Shutdown|
1156 * |DoNothing|
1158 When the |IdleAction| is unset, the default action is taken, which is suspend.
1160 There are also separate settings for AC power and battery.
1161 </translation>
1162 <translation id="1689963000958717134">Allows pushing network configuration to be applied for all users of a <ph name="PRODUCT_OS_NAME"/> device. The network configuration is a JSON-formatted string as defined by the Open Network Configuration format described at <ph name="ONC_SPEC_URL"/></translation>
1163 <translation id="6699880231565102694">Enable two-factor authentication for remote access hosts</translation>
1164 <translation id="2030905906517501646">Default search provider keyword</translation>
1165 <translation id="3072045631333522102">Screen saver to be used on the sign-in screen in retail mode</translation>
1166 <translation id="4550478922814283243">Enable or disable PIN-less authentication</translation>
1167 <translation id="7712109699186360774">Ask every time a site wants to access the camera and/or microphone</translation>
1168 <translation id="350797926066071931">Enable Translate</translation>
1169 <translation id="3711895659073496551">Suspend</translation>
1170 <translation id="4010738624545340900">Allow invocation of file selection dialogues</translation>
1171 <translation id="4518251772179446575">Ask whenever a site wants to track the users' physical location</translation>
1172 <translation id="402759845255257575">Do not allow any site to run JavaScript</translation>
1173 <translation id="5457924070961220141">Allows you to configure the default HTML renderer when <ph name="PRODUCT_FRAME_NAME"/> is installed.
1174 The default setting used when this policy is left unset is to allow the host browser do the rendering, but you can optionally override this and have <ph name="PRODUCT_FRAME_NAME"/> render HTML pages by default.</translation>
1175 <translation id="706669471845501145">Allow SITE to show desktop notifications?</translation>
1176 <translation id="7529144158022474049">Auto update scatter factor</translation>
1177 <translation id="2188979373208322108">Enables the bookmark bar on <ph name="PRODUCT_NAME"/>.
1179 If you enable this setting, <ph name="PRODUCT_NAME"/> will show a bookmark bar.
1181 If you disable this setting, users will never see the bookmark bar.
1183 If you enable or disable this setting, users cannot change or override it in <ph name="PRODUCT_NAME"/>.
1185 If this setting is left unset, the user can decide to use this function or not.</translation>
1186 <translation id="7593523670408385997">Configures the cache size that <ph name="PRODUCT_NAME"/> will use for storing cached files on the disk.
1188 If you set this policy, <ph name="PRODUCT_NAME"/> will use the provided cache size regardless of whether the user has specified the '--disk-cache-size' flag or not. The value specified in this policy is not a hard boundary but rather a suggestion to the caching system, any value below a few megabytes is too small and will be rounded up to a sane minimum.
1190 If the value of this policy is 0, the default cache size will be used but the user will not be able to change it.
1192 If this policy is not set, the default size will be used and the user will be able to override it with the --disk-cache-size flag.</translation>
1193 <translation id="5475361623548884387">Enable printing</translation>
1194 <translation id="7287359148642300270">Specifies which servers should be whitelisted for integrated authentication. Integrated authentication is only enabled when <ph name="PRODUCT_NAME"/> receives an authentication challenge from a proxy or from a server which is in this permitted list.
1196 Separate multiple server names with commas. Wildcards (*) are allowed.
1198 If you leave this policy not set Chrome will try to detect if a server is on the Intranet and only then will it respond to IWA requests. If a server is detected as Internet then IWA requests from it will be ignored by Chrome.</translation>
1199 <translation id="3653237928288822292">Default search provider icon</translation>
1200 <translation id="4721232045439708965">Allows you to specify the behaviour on startup.
1202 If you choose 'Open New Tab Page' the New Tab Page will always be opened when you start <ph name="PRODUCT_NAME"/>.
1204 If you choose 'Restore the last session', the URLs that were open last time <ph name="PRODUCT_NAME"/> was closed will be re-opened and the browsing session will be restored as it was left.
1205 Choosing this option disables some settings that rely on sessions or that perform actions on exit (such as Clear browsing data on exit or session-only cookies).
1207 If you choose 'Open a list of URLs', the list of 'URLs to open on startup' will be opened when a user starts <ph name="PRODUCT_NAME"/>.
1209 If you enable this setting, users cannot change or override it in <ph name="PRODUCT_NAME"/>.
1211 Disabling this setting is equivalent to leaving it not configured. The user will still be able to change it in <ph name="PRODUCT_NAME"/>.</translation>
1212 <translation id="2872961005593481000">Shut down</translation>
1213 <translation id="4445684791305970001">Disables the Developer Tools and the JavaScript console.
1215 If you enable this setting, the Developer Tools cannot be accessed and website elements cannot be inspected any more. Any keyboard shortcuts and any menu or context menu entries to open the Developer Tools or the JavaScript Console will be disabled.
1217 Setting this option to disabled or leaving it unset will allow the user to use the Developer Tools and the JavaScript console.</translation>
1218 <translation id="9203071022800375458">Disables taking screenshots.
1220 If enabled screenshots cannot be taken using keyboard shortcuts or extension APIs.
1222 If disabled or not specified, taking screenshots is allowed.</translation>
1223 <translation id="5697306356229823047">Report device users</translation>
1224 <translation id="8649763579836720255">Chrome OS devices can use remote attestation (Verified Access) to get a certificate issued by the Chrome OS CA that asserts that the device is eligible to play protected content. This process involves sending hardware endorsement information to the Chrome OS CA which uniquely identifies the device.
1226 If this setting is false, the device will not use remote attestation for content protection and the device may be unable to play protected content.
1228 If this setting is true, or if it is not set, remote attestation may be used for content protection.</translation>
1229 <translation id="4632343302005518762">Allow <ph name="PRODUCT_FRAME_NAME"/> to handle the listed content types</translation>
1230 <translation id="13356285923490863">Policy Name</translation>
1231 <translation id="557658534286111200">Enables or disables bookmark editing</translation>
1232 <translation id="5378985487213287085">Allows you to set whether websites are allowed to display desktop notifications. Displaying desktop notifications can be allowed by default, denied by default or the user can be asked every time a website wants to show desktop notifications.
1234 If this policy is left not set, 'AskNotifications' will be used and the user will be able to change it.</translation>
1235 <translation id="2386362615870139244">Allow screen wake locks</translation>
1236 <translation id="6908640907898649429">Configures the default search provider. You can specify the default search provider that the user will use or choose to disable default search.</translation>
1237 <translation id="6544897973797372144">If this policy is set to True and the ChromeOsReleaseChannel policy is not specified then users of the enrolling domain will be allowed to change the release channel of the device. If this policy is set to false the device will be locked in whatever channel it was last set.
1239 The user selected channel will be overridden by the ChromeOsReleaseChannel policy, but if the policy channel is more stable than the one that was installed on the device, then the channel will only switch after the version of the more stable channel reaches a higher version number than the one installed on the device.</translation>
1240 <translation id="389421284571827139">Allows you to specify the proxy server used by <ph name="PRODUCT_NAME"/> and prevents users from changing proxy settings.
1242 If you choose to never use a proxy server and always connect directly, all other options are ignored.
1244 If you choose to auto-detect the proxy server, all other options are ignored.
1246 For detailed examples, visit:
1247 <ph name="PROXY_HELP_URL"/>
1249 If you enable this setting, <ph name="PRODUCT_NAME"/> ignores all proxy-related options specified from the command line.
1251 Leaving these policies unset will allow the users to choose the proxy settings on their own.</translation>
1252 <translation id="681446116407619279">Supported authentication schemes</translation>
1253 <translation id="4027608872760987929">Enable the default search provider</translation>
1254 <translation id="2223598546285729819">Default notification settings</translation>
1255 <translation id="6158324314836466367">Enterprise web store name (deprecated)</translation>
1256 <translation id="3984028218719007910">Determines whether <ph name="PRODUCT_OS_NAME"/> keeps local account data after logout. If set to true, no persistent accounts are kept by <ph name="PRODUCT_OS_NAME"/> and all data from the user session will be discarded after logout. If this policy is set to false or not configured, the device may keep (encrypted) local user data.</translation>
1257 <translation id="3793095274466276777">Configures the default browser checks in <ph name="PRODUCT_NAME"/> and prevents users from changing them.
1259 If you enable this setting, <ph name="PRODUCT_NAME"/> will always check on start-up whether it is the default browser and automatically register itself if possible.
1261 If this setting is disabled, <ph name="PRODUCT_NAME"/> will never check if it is the default browser and will disable user controls for setting this option.
1263 If this setting is not set, <ph name="PRODUCT_NAME"/> will allow the user to control whether it is the default browser and whether user notifications should be shown when it isn't.</translation>
1264 <translation id="3504791027627803580">Specifies the URL of the search engine used to provide image search. Search requests will be sent using the GET method. If the DefaultSearchProviderImageURLPostParams policy is set then image search requests will use the POST method instead.
1266 This policy is optional. If not set, no image search will be used.
1268 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
1269 <translation id="7529100000224450960">Allows you to set a list of url patterns that specify sites which are allowed to open pop-ups.
1271 If this policy is left unset the global default value will be used for all sites either from the 'DefaultPop-upsSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
1272 <translation id="6155936611791017817">Set default state of the large cursor on the login screen</translation>
1273 <translation id="1530812829012954197">Always render the following URL patterns in the host browser</translation>
1274 <translation id="9026000212339701596">A dictionary mapping hostnames to a boolean flag specifying whether access to the host should be allowed (true) or blocked (false).
1276 This policy is for internal use by Chrome itself.</translation>
1277 <translation id="913195841488580904">Block access to a list of URLs</translation>
1278 <translation id="5461308170340925511">Configures extension-related policies. The user is not allowed to install blacklisted extensions unless they are whitelisted. You can also force <ph name="PRODUCT_NAME"/> to automatically install extensions by specifying them in <ph name="EXTENSIONINSTALLFORCELIST_POLICY_NAME"/>. Force-installed extensions are installed regardless whether they are present in the blacklist.</translation>
1279 <translation id="3292147213643666827">Enables <ph name="PRODUCT_NAME"/> to act as a proxy between <ph name="CLOUD_PRINT_NAME"/> and legacy printers connected to the machine.
1281 If this setting is enabled or not configured, users can enable the cloud print proxy by authentication with their Google account.
1283 If this setting is disabled, users cannot enable the proxy, and the machine will not be allowed to share it's printers with <ph name="CLOUD_PRINT_NAME"/>.</translation>
1284 <translation id="6373222873250380826">Disables automatic updates when set to True.
1286 <ph name="PRODUCT_OS_NAME"/> devices automatically check for updates when this setting is not configured or set to False.</translation>
1287 <translation id="6190022522129724693"> setting</translation>
1288 <translation id="847472800012384958">Do not allow any site to show pop-ups</translation>
1289 <translation id="4733471537137819387">Policies related to integrated HTTP authentication.</translation>
1290 <translation id="8501011084242226370">Specifies a list of plug-ins that user can enable or disable in <ph name="PRODUCT_NAME"/>.
1292 The wildcard characters '*' and '?' can be used to match sequences of arbitrary characters. '*' matches an arbitrary number of characters while '?' specifies an optional single character, i.e. matches zero or one characters. The escape character is '\', so to match actual '*', '?', or '\' characters, you can put a '\' in front of them.
1294 If you enable this setting, the specified list of plug-ins can be used in <ph name="PRODUCT_NAME"/>. Users can enable or disable them in 'about:plugins', even if the plug-in also matches a pattern in DisabledPlugins. Users can also enable and disable plug-ins that don't match any patterns in DisabledPlugins, DisabledPluginsExceptions and EnabledPlugins.
1296 This policy is meant to allow for strict plug-in blacklisting where the 'DisabledPlugins' list contains wildcarded entries like disable all plug-ins '*' or disable all Java plug-ins '*Java*' but the administrator wishes to enable some particular version like 'IcedTea Java 2.3'. This particular versions can be specified in this policy.
1298 Note that both the plug-in name and the plug-in's group name have to be exempted. Each plug-in group is shown in a separate section in about:plug-ins; each section may have one or more plug-ins. For example, the &quot;Shockwave Flash&quot; plug-in belongs to the &quot;Adobe Flash Player&quot; group, and both names have to have a match in the exceptions list if that plug-in is to be exempted from the blacklist.
1300 If this policy is left not set, any plug-in that matches the patterns in the 'DisabledPlugins' will be locked disabled and the user won't be able to enable them.</translation>
1301 <translation id="8951350807133946005">Set disk cache directory</translation>
1302 <translation id="603410445099326293">Parameters for suggest URL which uses POST</translation>
1303 <translation id="2592091433672667839">Duration of inactivity before the screen saver is shown on the sign-in screen in retail mode</translation>
1304 <translation id="166427968280387991">Proxy server</translation>
1305 <translation id="2805707493867224476">Allow all sites to show pop-ups</translation>
1306 <translation id="1727394138581151779">Block all plug-ins</translation>
1307 <translation id="8118665053362250806">Set media disk cache size</translation>
1308 <translation id="6565312346072273043">Set the default state of the on-screen keyboard accessibility feature on the login screen.
1310 If this policy is set to true, the on-screen keyboard will be enabled when the login screen is shown.
1312 If this policy is set to false, the on-screen keyboard will be disabled when the login screen is shown.
1314 If you set this policy, users can temporarily override it by enabling or disabling the on-screen keyboard. However, the user's choice is not persistent and the default is restored whenever the login screen is shown anew or the user remains idle on the login screen for a minute.
1316 If this policy is left unset, the on-screen keyboard is disabled when the login screen is first shown. Users can enable or disable the on-screen keyboard any time and its status on the login screen is persisted between users.</translation>
1317 <translation id="7079519252486108041">Block pop-ups on these sites</translation>
1318 <translation id="1859633270756049523">Limit the session length</translation>
1319 <translation id="7433714841194914373">Enable Instant</translation>
1320 <translation id="4983201894483989687">Allow running plug-ins that are outdated</translation>
1321 <translation id="443665821428652897">Clear site data on browser shutdown (deprecated)</translation>
1322 <translation id="3823029528410252878">Disables saving browser history in <ph name="PRODUCT_NAME"/> and prevents users from changing this setting.
1324 If this setting is enabled, browsing history is not saved.
1326 If this setting is disabled or not set, browsing history is saved.</translation>
1327 <translation id="7295019613773647480">Enable supervised users</translation>
1328 <translation id="2759224876420453487">Control the user behaviour in a multiprofile session</translation>
1329 <translation id="3844092002200215574">Configures the directory that <ph name="PRODUCT_NAME"/> will use for storing cached files on the disk.
1331 If you set this policy, <ph name="PRODUCT_NAME"/> will use the provided directory regardless of whether the user has specified the '--disk-cache-dir' flag or not.
1333 See http://www.chromium.org/administrators/policy-list-3/user-data-directory-variables for a list of variables that can be used.
1335 If this policy is left not set the default cache directory will be used and the user will be able to override it with the '--disk-cache-dir' command line flag.</translation>
1336 <translation id="3034580675120919256">Allows you to set whether websites are allowed to run JavaScript. Running JavaScript can be either allowed for all websites or denied for all websites.
1338 If this policy is left unset, 'AllowJavaScript' will be used and the user will be able to change it.</translation>
1339 <translation id="193900697589383153">Adds a logout button to the system tray.
1341 If enabled, a big, red logout button is shown in the system tray while a session is active and the screen is not locked.
1343 If disabled or not specified, no big, red logout button is shown in the system tray.</translation>
1344 <translation id="5111573778467334951">Specify the action to take when the idle delay is reached while running on battery power.
1346 When this policy is set, it specifies the action that <ph name="PRODUCT_OS_NAME"/> takes when the user remains idle for the length of time given by the idle delay, which can be configured separately.
1348 When this policy is unset, the default action is taken, which is suspend.
1350 If the action is suspend, <ph name="PRODUCT_OS_NAME"/> can separately be configured to either lock or not lock the screen before suspending.</translation>
1351 <translation id="3195451902035818945">Specifies whether SSL record splitting should be disabled. Record splitting is a workaround for a weakness in SSL 3.0 and TLS 1.0 but can cause compatibility issues with some HTTPS servers and proxies.
1353 If the policy is not set, or is set to false, then record splitting will be used on SSL/TLS connections which use CBC cipher suites.</translation>
1354 <translation id="6903814433019432303">This policy is active in retail mode only.
1356 Determines the set of URLs to be loaded when the demo session is started. This policy will override any other mechanisms for setting the initial URL and thus can only be applied to a session not associated with a particular user.</translation>
1357 <translation id="5868414965372171132">User-level network configuration</translation>
1358 <translation id="8519264904050090490">Managed user manual exception URLs</translation>
1359 <translation id="4480694116501920047">Force SafeSearch</translation>
1360 <translation id="465099050592230505">Enterprise web store URL (deprecated)</translation>
1361 <translation id="2006530844219044261">Power management</translation>
1362 <translation id="1221359380862872747">Load specified URLs on demo login</translation>
1363 <translation id="8711086062295757690">Specifies the keyword, which is the shortcut used in the omnibox to trigger the search for this provider.
1365 This policy is optional. If not set, no keyword will activate the search provider.
1367 This policy is only considered if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
1368 <translation id="1152117524387175066">Report the state of the device's dev switch at boot.
1370 If the policy is set to false, the state of the dev switch will not be reported.</translation>
1371 <translation id="5774856474228476867">Default search provider search URL</translation>
1372 <translation id="4650759511838826572">Disable URL protocol schemes</translation>
1373 <translation id="7831595031698917016">Specifies the maximum delay in milliseconds between receiving a policy invalidation and fetching the new policy from the device management service.
1375 Setting this policy overrides the default value of 5,000 milliseconds. Valid values for this policy are in the range from 1,000 (1 second) to 300,000 (5 minutes). Any values not in this range will be clamped to the respective boundary.
1377 Leaving this policy not set will make <ph name="PRODUCT_NAME"/> use the default value of 5,000 milliseconds.</translation>
1378 <translation id="8099880303030573137">Idle delay when running on battery power</translation>
1379 <translation id="1709037111685927635">Configure wallpaper image.
1381 This policy allows you to configure the wallpaper image that is shown on the desktop and on the login screen background for the user. The policy is set by specifying the URL from which <ph name="PRODUCT_OS_NAME"/> can download the wallpaper image and a cryptographic hash used to verify the integrity of the download. The image must be in JPEG format, its size must not exceed 16 MB. The URL must be accessible without any authentication.
1383 The wallpaper image is downloaded and cached. It will be re-downloaded whenever the URL or the hash changes.
1385 The policy should be specified as a string that expresses the URL and hash in JSON format, conforming to the following schema:
1387 &quot;type&quot;: &quot;object&quot;,
1388 &quot;properties&quot;: {
1389 &quot;url&quot;: {
1390 &quot;description&quot;: &quot;The URL from which the wallpaper image can be downloaded.&quot;,
1391 &quot;type&quot;: &quot;string&quot;
1393 &quot;hash&quot;: {
1394 &quot;description&quot;: &quot;The SHA-256 hash of the wallpaper image.&quot;,
1395 &quot;type&quot;: &quot;string&quot;
1400 If this policy is set, <ph name="PRODUCT_OS_NAME"/> will download and use the wallpaper image.
1402 If you set this policy, users cannot change or override it.
1404 If the policy is left not set, the user can choose an image to be shown on the desktop and on the login screen background.</translation>
1405 <translation id="2761483219396643566">Idle warning delay when running on battery power</translation>
1406 <translation id="6281043242780654992">Configures policies for Native Messaging. Blacklisted native messaging hosts won't be allowed unless they are whitelisted.</translation>
1407 <translation id="1468307069016535757">Set the default state of the high contrast mode accessibility feature on the login screen.
1409 If this policy is set to true, high contrast mode will be enabled when the login screen is shown.
1411 If this policy is set to false, high contrast mode will be disabled when the login screen is shown.
1413 If you set this policy, users can temporarily override it by enabling or disabling high contrast mode. However, the user's choice is not persistent and the default is restored whenever the login screen is shown anew or the user remains idle on the login screen for a minute.
1415 If this policy is left unset, high contrast mode is disabled when the login screen is first shown. Users can enable or disable high contrast mode at any time and its status on the login screen is persisted between users.</translation>
1416 <translation id="602728333950205286">Default search provider instant URL</translation>
1417 <translation id="3030000825273123558">Enable metrics reporting</translation>
1418 <translation id="8465065632133292531">Parameters for instant URL which uses POST</translation>
1419 <translation id="6559057113164934677">Do not allow any site to access the camera and microphone</translation>
1420 <translation id="7273823081800296768">If this setting is enabled or not configured, then users can opt to pair clients and hosts at connection time, eliminating the need to enter a PIN every time.
1422 If this setting is disabled, then this feature will not be available.</translation>
1423 <translation id="1675002386741412210">Supported on:</translation>
1424 <translation id="1608755754295374538">URLs that will be granted access to audio capture devices without prompt</translation>
1425 <translation id="3547954654003013442">Proxy settings</translation>
1426 <translation id="5921713479449475707">Allow autoupdate downloads via HTTP</translation>
1427 <translation id="4482640907922304445">Shows the Home button on <ph name="PRODUCT_NAME"/>'s toolbar.
1429 If you enable this setting, the Home button is always shown.
1431 If you disable this setting, the Home button is never shown.
1433 If you enable or disable this setting, users cannot change or override this setting in <ph name="PRODUCT_NAME"/>.
1435 Leaving this policy unset will allow the user to choose whether to show the home button.</translation>
1436 <translation id="2518231489509538392">Allow playing audio</translation>
1437 <translation id="8146727383888924340">Allow users to redeem offers through Chrome OS Registration</translation>
1438 <translation id="7301543427086558500">Specifies a list of alternative URLs that can be used to extract search terms from the search engine. The URLs should contain the string <ph name="SEARCH_TERM_MARKER"/>, which will be used to extract the search terms.
1440 This policy is optional. If not set, no alternative urls will be used to extract search terms.
1442 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
1443 <translation id="436581050240847513">Report device network interfaces</translation>
1444 <translation id="6282799760374509080">Allow or deny audio capture</translation>
1445 <translation id="8864975621965365890">Suppresses the turn-down prompt that appears when a site is rendered by <ph name="PRODUCT_FRAME_NAME"/>.</translation>
1446 <translation id="3264793472749429012">Default search provider encodings</translation>
1447 <translation id="285480231336205327">Enable high contrast mode</translation>
1448 <translation id="5366977351895725771">If set to false, supervised-user creation by this user will be disabled. Any existing supervised users will still be available.
1450 If set to true or not configured, supervised users can be created and managed by this user.</translation>
1451 <translation id="5469484020713359236">Allows you to set a list of url patterns that specify sites which are allowed to set cookies.
1453 If this policy is left not set the global default value will be used for all sites either from the 'DefaultCookiesSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
1454 <translation id="1504431521196476721">Remote Attestation</translation>
1455 <translation id="1881299719020653447">Hide the web store from the new tab page and app launcher</translation>
1456 <translation id="930930237275114205">Set <ph name="PRODUCT_FRAME_NAME"/> user data directory</translation>
1457 <translation id="244317009688098048">Enable bailout keyboard shortcut for auto-login.
1459 If this policy is unset or set to True and a device-local account is configured for zero-delay auto-login, <ph name="PRODUCT_OS_NAME"/> will honour the keyboard shortcut Ctrl+Alt+S for bypassing auto-login and showing the login screen.
1461 If this policy is set to False, zero-delay auto-login (if configured) cannot be bypassed.</translation>
1462 <translation id="5208240613060747912">Allows you to set a list of url patterns that specify sites which are not allowed to display notifications.
1464 If this policy is left unset the global default value will be used for all sites either from the 'DefaultNotificationsSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
1465 <translation id="346731943813722404">Specifies whether power management delays and the session length limit should only start running after the first user activity has been observed in a session.
1467 If this policy is set to True, power management delays and the session length limit do not start running until after the first user activity has been observed in a session.
1469 If this policy is set to False or left unset, power management delays and the session length limit start running immediately on session start.</translation>
1470 <translation id="4600786265870346112">Enable large cursor</translation>
1471 <translation id="5887414688706570295">Configures the TalkGadget prefix that will be used by remote access hosts and prevents users from changing it.
1473 If specified, this prefix is prepended to the base TalkGadget name to create a full domain name for the TalkGadget. The base TalkGadget domain name is '.talkgadget.google.com'.
1475 If this setting is enabled, then hosts will use the custom domain name when accessing the TalkGadget instead of the default domain name.
1477 If this setting is disabled or not set, then the default TalkGadget domain name ('chromoting-host.talkgadget.google.com') will be used for all hosts.
1479 Remote access clients are not affected by this policy setting. They will always use 'chromoting-client.talkgadget.google.com' to access the TalkGadget.</translation>
1480 <translation id="1103860406762205913">Enables the old web-based signin</translation>
1481 <translation id="5765780083710877561">Description:</translation>
1482 <translation id="6915442654606973733">Enable the spoken feedback accessibility feature.
1484 If this policy is set to true, spoken feedback will always be enabled.
1486 If this policy is set to false, spoken feedback will always be disabled.
1488 If you set this policy, users cannot change or override it.
1490 If this policy is left unset, spoken feedback is disabled initially but can be enabled by the user at any time.</translation>
1491 <translation id="7796141075993499320">Allows you to set a list of url patterns that specify sites which are allowed to run plug-ins.
1493 If this policy is left unset the global default value will be used for all sites either from the 'DefaultPlug-insSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
1494 <translation id="3809527282695568696">If 'Open a list of URLs' is selected as the start-up action, this allows you to specify the list of URLs that are opened. If left unset, no URL will be opened on start up.
1496 This policy only works if the 'RestoreOnStartup' policy is set to 'RestoreOnStartupIsURLs'.</translation>
1497 <translation id="649418342108050703">Disable support for 3D graphics APIs.
1499 Enabling this setting prevents web pages from accessing the graphics processing unit (GPU). Specifically, web pages cannot access the WebGL API and plug-ins cannot use the Pepper 3D API.
1501 Disabling this setting or leaving it unset potentially allows web pages to use the WebGL API and plug-ins to use the Pepper 3D API. The default settings of the browser may still require command line arguments to be passed in order to use these APIs.</translation>
1502 <translation id="2077273864382355561">Screen off delay when running on battery power</translation>
1503 <translation id="9112897538922695510">Allows you to register a list of protocol handlers. This can only be a recommended policy. The property |protocol| should be set to the scheme such as 'mailto' and the property |url| should be set to the URL pattern of the application that handles the scheme. The pattern can include a '%s', which if present will be replaced by the handled URL.
1505 The protocol handlers registered by policy are merged with the ones registered by the user and both are available for use. The user can override the protocol handlers installed by policy by installing a new default handler, but cannot remove a protocol handler registered by policy.</translation>
1506 <translation id="3417418267404583991">If this policy is set to true or not configured, <ph name="PRODUCT_OS_NAME"/> will enable guest logins. Guest logins are anonymous user sessions and do not require a password.
1508 If this policy is set to false, <ph name="PRODUCT_OS_NAME"/> will not allow guest sessions to be started.</translation>
1509 <translation id="8329984337216493753">This policy is active in retail mode only.
1511 When DeviceIdleLogoutTimeout is specified, this policy defines the duration of the warning box with a count down timer that is shown to the user before the logout is executed.
1513 The policy value should be specified in milliseconds.</translation>
1514 <translation id="237494535617297575">Allows you to set a list of url patterns that specify sites which are allowed to display notifications.
1516 If this policy is left unset, the global default value will be used for all sites either from the 'DefaultNotificationsSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
1517 <translation id="527237119693897329">Allows you to specify which native messaging hosts should not be loaded.
1519 A blacklist value of '*' means that all native messaging hosts are blacklisted unless they are explicitly listed in the whitelist.
1521 If this policy is left not set <ph name="PRODUCT_NAME"/> will load all installed native messaging hosts.</translation>
1522 <translation id="749556411189861380">Report OS and firmware version of enrolled devices.
1524 If this setting is not set or set to True, enrolled devices will report the OS and firmware version periodically. If this setting is set to False, version info will not be reported.</translation>
1525 <translation id="7258823566580374486">Enable curtaining of remote access hosts</translation>
1526 <translation id="5560039246134246593">Add a parameter to the fetching of the Variations seed in <ph name="PRODUCT_NAME"/>.
1528 If specified, will add a query parameter called 'restrict' to the URL used to fetch the Variations seed. The value of the parameter will be the value specified in this policy.
1530 If not specified, will not modify the Variations seed URL.</translation>
1531 <translation id="944817693306670849">Set disk cache size</translation>
1532 <translation id="8544375438507658205">Default HTML renderer for <ph name="PRODUCT_FRAME_NAME"/></translation>
1533 <translation id="2371309782685318247">Specifies the period in milliseconds at which the device management service is queried for user policy information.
1535 Setting this policy overrides the default value of 3 hours. Valid values for this policy are in the range from 1800000 (30 minutes) to 86400000 (1 day). Any values not in this range will be clamped to the respective boundary.
1537 Leaving this policy not set will make <ph name="PRODUCT_NAME"/> use the default value of 3 hours.</translation>
1538 <translation id="2571066091915960923">Enable or disable the data compression proxy and prevent users from changing this setting.
1540 If you enable or disable this setting, users cannot change or override this setting.
1542 If this policy is left not set, the data compression proxy feature will be available for the user to choose whether to use it or not.</translation>
1543 <translation id="2170233653554726857">Enable WPAD optimisation</translation>
1544 <translation id="7424751532654212117">List of exceptions to the list of disabled plugins</translation>
1545 <translation id="6233173491898450179">Set download directory</translation>
1546 <translation id="8908294717014659003">Allows you to set whether websites are allowed to get access to media capture devices. Access to media capture devices can be allowed by default, or the user can be asked every time a website wants to get access to media capture devices.
1548 If this policy is left not set, 'PromptOnAccess' will be used and the user will be able to change it.</translation>
1549 <translation id="4429220551923452215">Enables or disables the apps shortcut in the bookmark bar.
1551 If this policy is not set then the user can choose to show or hide the apps shortcut from the bookmark bar context menu.
1553 If this policy is configured then the user can't change it, and the apps shortcut is always shown or never shown.</translation>
1554 <translation id="2299220924812062390">Specify a list of enabled plug-ins</translation>
1555 <translation id="4325690621216251241">Add a logout button to the system tray</translation>
1556 <translation id="924557436754151212">Import saved passwords from default browser on first run</translation>
1557 <translation id="1465619815762735808">Click to play</translation>
1558 <translation id="7227967227357489766">Defines the list of users that are allowed to login to the device. Entries are of the form <ph name="USER_WHITELIST_ENTRY_FORMAT"/>, such as <ph name="USER_WHITELIST_ENTRY_EXAMPLE"/>. To allow arbitrary users on a domain, use entries of the form <ph name="USER_WHITELIST_ENTRY_WILDCARD"/>.
1560 If this policy is not configured, there are no restrictions on which users are allowed to sign in. Note that creating new users still requires the <ph name="DEVICEALLOWNEWUSERS_POLICY_NAME"/> policy to be configured appropriately.</translation>
1561 <translation id="2521581787935130926">Show the apps shortcut in the bookmark bar</translation>
1562 <translation id="8135937294926049787">Specifies the length of time without user input after which the screen is turned off when running on AC power.
1564 When this policy is set to a value greater than zero, it specifies the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> turns off the screen.
1566 When this policy is set to zero, <ph name="PRODUCT_OS_NAME"/> does not turn off the screen when the user becomes idle.
1568 When this policy is unset, a default length of time is used.
1570 The policy value should be specified in milliseconds. Values are clamped to be less than or equal to the idle delay.</translation>
1571 <translation id="1897365952389968758">Allow all sites to run JavaScript (recommended)</translation>
1572 <translation id="922540222991413931">Configure extension, app, and user script install sources</translation>
1573 <translation id="7323896582714668701">Additional command line parameters for <ph name="PRODUCT_NAME"/></translation>
1574 <translation id="6931242315485576290">Disable synchronisation of data with Google</translation>
1575 <translation id="1330145147221172764">Enable on-screen keyboard</translation>
1576 <translation id="7006788746334555276">Content Settings</translation>
1577 <translation id="450537894712826981">Configures the cache size that <ph name="PRODUCT_NAME"/> will use for storing cached media files on the disk.
1579 If you set this policy, <ph name="PRODUCT_NAME"/> will use the provided cache size regardless of whether the user has specified the '--media-cache-size' flag or not. The value specified in this policy is not a hard boundary but rather a suggestion to the caching system, any value below a few megabytes is too small and will be rounded up to a sane minimum.
1581 If the value of this policy is 0, the default cache size will be used but the user will not be able to change it.
1583 If this policy is not set, the default size will be used and the user will be able to override it with the --media-cache-size flag.</translation>
1584 <translation id="5142301680741828703">Always render the following URL patterns in <ph name="PRODUCT_FRAME_NAME"/></translation>
1585 <translation id="4625915093043961294">Configure extension installation whitelist</translation>
1586 <translation id="5893553533827140852">If this setting is enabled, then gnubby authentication requests will be proxied across a remote host connection.
1588 If this setting is disabled or not configured, gnubby authentication requests will not be proxied.</translation>
1589 <translation id="187819629719252111">Allows access to local files on the machine by allowing <ph name="PRODUCT_NAME"/> to display file selection dialogues.
1591 If you enable this setting, users can open file selection dialogues as normal.
1593 If you disable this setting, whenever the user performs an action which would provoke a file selection dialogue (like importing bookmarks, uploading files, saving links, etc.) a message is displayed instead and the user is assumed to have clicked Cancel on the file selection dialogue.
1595 If this setting is not set, users can open file selection dialogues as normal.</translation>
1596 <translation id="4507081891926866240">Customise the list of URL patterns that should always be rendered by <ph name="PRODUCT_FRAME_NAME"/>.
1598 If this policy is not set the default renderer will be used for all sites as specified by the 'ChromeFrameRendererSettings' policy.
1600 For example patterns see http://www.chromium.org/developers/how-tos/chrome-frame-getting-started.</translation>
1601 <translation id="3101501961102569744">Choose how to specify proxy server settings</translation>
1602 <translation id="1803646570632580723">List of pinned apps to show in the launcher</translation>
1603 <translation id="1062011392452772310">Enable remote attestation for the device</translation>
1604 <translation id="7774768074957326919">Use system proxy settings</translation>
1605 <translation id="3891357445869647828">Enable JavaScript</translation>
1606 <translation id="2274864612594831715">This policy configures enabling the virtual keyboard as an input device on ChromeOS. Users cannot override this policy.
1608 If the policy is set to true, the on-screen virtual keyboard will always be enabled.
1610 If set to false, the on-screen virtual keyboard will always be disabled.
1612 If you set this policy, users cannot change or override it. However, users will still be able to enable/disable an accessibility on-screen keyboard which takes precedence over the virtual keyboard controlled by this policy. See the |VirtualKeyboardEnabled| policy for controlling the accessibility on-screen keyboard.
1614 If this policy is left unset, the on-screen keyboard is disabled initially but can be enabled by the user anytime. Heuristic rules may also be used to decide when to display the keyboard.</translation>
1615 <translation id="6774533686631353488">Allow user-level Native Messaging hosts (installed without admin permissions).</translation>
1616 <translation id="868187325500643455">Allow all sites to automatically run plug-ins</translation>
1617 <translation id="7421483919690710988">Set media disk cache size in bytes</translation>
1618 <translation id="5226033722357981948"> finder should be disabled</translation>
1619 <translation id="7234280155140786597">Names of the forbidden native messaging hosts (or * for all)</translation>
1620 <translation id="4890209226533226410">Set the type of screen magnifier that is enabled.
1622 If this policy is set, it controls the type of screen magnifier that is enabled. Setting the policy to &quot;None&quot; disables the screen magnifier.
1624 If you set this policy, users cannot change or override it.
1626 If this policy is left unset, the screen magnifier is disabled initially but can be enabled by the user at any time.</translation>
1627 <translation id="3428247105888806363">Enable network prediction.</translation>
1628 <translation id="3460784402832014830">Specifies the URL that a search engine uses to provide a new tab page.
1630 This policy is optional. If not set, no new tab page will be provided.
1632 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
1633 <translation id="6145799962557135888">Allows you to set a list of url patterns that specify sites which are allowed to run JavaScript.
1635 If this policy is left not set the global default value will be used for all sites either from the 'DefaultJavaScriptSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
1636 <translation id="2757054304033424106">Types of extensions/apps that are allowed to be installed</translation>
1637 <translation id="7053678646221257043">This policy forces bookmarks to be imported from the current default browser if enabled. If enabled, this policy also affects the import dialogue.
1639 If disabled, no bookmarks are imported.
1641 If it is not set, the user may be asked whether to import or importing may happen automatically.</translation>
1642 <translation id="5757829681942414015">Configures the directory that <ph name="PRODUCT_NAME"/> will use for storing user data.
1644 If you set this policy, <ph name="PRODUCT_NAME"/> will use the provided directory regardless of whether the user has specified the '--user-data-dir' flag or not.
1646 See http://www.chromium.org/administrators/policy-list-3/user-data-directory-variables for a list of variables that can be used.
1648 If this policy is left not set the default profile path will be used and the user will be able to override it with the '--user-data-dir' command line flag.</translation>
1649 <translation id="5067143124345820993">Login user white list</translation>
1650 <translation id="2514328368635166290">Specifies the favourite icon URL of the default search provider.
1652 This policy is optional. If not set, no icon will be present for the search provider.
1654 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
1655 <translation id="7194407337890404814">Default search provider name</translation>
1656 <translation id="1843117931376765605">Refresh rate for user policy</translation>
1657 <translation id="5535973522252703021">Kerberos delegation server whitelist</translation>
1658 <translation id="9187743794267626640">Disable mounting of external storage</translation>
1659 <translation id="6353901068939575220">Specifies the parameters used when searching a URL with POST. It consists of comma-separated name/value pairs. If a value is a template parameter, like {searchTerms} in above example, it will be replaced with real search terms data.
1661 This policy is optional. If not set, search request will be sent using the GET method.
1663 This policy is only respected if the 'DefaultSearchProviderEnabled' policy is enabled.</translation>
1664 <translation id="5307432759655324440">Incognito mode availability</translation>
1665 <translation id="4056910949759281379">Disable SPDY protocol</translation>
1666 <translation id="3808945828600697669">Specify a list of disabled plug-ins</translation>
1667 <translation id="4525521128313814366">Allows you to set a list of url patterns that specify sites which are not allowed to display images.
1669 If this policy is left unset, the global default value will be used for all sites either from the 'DefaultImagesSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
1670 <translation id="8499172469244085141">Default Settings (users can override)</translation>
1671 <translation id="4816674326202173458">Allow enterprise user to be both primary and secondary (Default behaviour for non-managed users)</translation>
1672 <translation id="8693243869659262736">Use built-in DNS client</translation>
1673 <translation id="3072847235228302527">Set the Terms of Service for a device-local account</translation>
1674 <translation id="5523812257194833591">A public session to auto-login after a delay.
1676 If this policy is set, the specified session will be automatically logged in after a period of time has elapsed at the login screen without user interaction. The public session must already be configured (see |DeviceLocalAccounts|).
1678 If this policy is unset, there will be no auto-login.</translation>
1679 <translation id="5983708779415553259">Default behaviour for sites not in any content pack</translation>
1680 <translation id="3866530186104388232">If this policy is set to true or not configured, <ph name="PRODUCT_OS_NAME"/> will show existing users on the login screen and allow the user to pick one. If this policy is set to false, <ph name="PRODUCT_OS_NAME"/> will use the username/password prompt for login.</translation>
1681 <translation id="7384902298286534237">Allows you to set a list of URL patterns that specify sites which are allowed to set session-only cookies.
1683 If this policy is left not set, the global default value will be used for all sites either from the 'DefaultCookiesSetting' policy if it is set, or the user's personal configuration otherwise.
1685 If the &quot;RestoreOnStartup&quot; policy is set to restore URLs from previous sessions this policy will not be respected and cookies will be stored permanently for those sites.</translation>
1686 <translation id="2098658257603918882">Enable reporting of usage and crash-related data</translation>
1687 <translation id="4633786464238689684">Changes the default behaviour of the top row keys to function keys.
1689 If this policy is set to true, the keyboard's top row of keys will produce function key commands by default. The search key has to be pressed to revert their behaviour back to media keys.
1691 If this policy is set to false or left unset, the keyboard will produce media key commands by default and function key commands when the search key is held.</translation>
1692 <translation id="2324547593752594014">Allows sign in to Chrome</translation>
1693 <translation id="172374442286684480">Allow all sites to set local data.</translation>
1694 <translation id="1151353063931113432">Allow images on these sites</translation>
1695 <translation id="1297182715641689552">Use a .pac proxy script</translation>
1696 <translation id="2976002782221275500">Specifies the length of time without user input after which the screen is dimmed when running on battery power.
1698 When this policy is set to a value greater than zero, it specifies the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> dims the screen.
1700 When this policy is set to zero, <ph name="PRODUCT_OS_NAME"/> does not dim the screen when the user becomes idle.
1702 When this policy is unset, a default length of time is used.
1704 The policy value should be specified in milliseconds. Values are clamped to be less than or equal the screen off delay (if set) and the idle delay.</translation>
1705 <translation id="8631434304112909927">until version <ph name="UNTIL_VERSION"/></translation>
1706 <translation id="7469554574977894907">Enable search suggestions</translation>
1707 <translation id="4906194810004762807">Refresh rate for Device Policy</translation>
1708 <translation id="8922668182412426494">Servers that <ph name="PRODUCT_NAME"/> may delegate to.
1710 Separate multiple server names with commas. Wildcards (*) are allowed.
1712 If you leave this policy not set Chrome will not delegate user credentials even if a server is detected as Intranet.</translation>
1713 <translation id="1398889361882383850">Allows you to set whether websites are allowed to automatically run plugins. Automatically running plugins can be either allowed for all websites or denied for all websites.
1715 Click to play allows plugins to run but the user must click them to start their execution.
1717 If this policy is left not set, 'AllowPlugins' will be used and the user will be able to change it.</translation>
1718 <translation id="7974114691960514888">This policy is no longer supported.
1719 Enables usage of STUN and relay servers when connecting to a remote client.
1721 If this setting is enabled, then this machine can discover and connect to remote host machines even if they are separated by a firewall.
1723 If this setting is disabled and outgoing UDP connections are filtered by the firewall, then this machine can only connect to host machines within the local network.</translation>
1724 <translation id="7694807474048279351">Schedule an automatic reboot after a <ph name="PRODUCT_OS_NAME"/> update has been applied.
1726 When this policy is set to true, an automatic reboot is scheduled when a <ph name="PRODUCT_OS_NAME"/> update has been applied and a reboot is required to complete the update process. The reboot is scheduled immediately but may be delayed on the device by up to 24 hours if a user is currently using the device.
1728 When this policy is set to false, no automatic reboot is scheduled after applying a <ph name="PRODUCT_OS_NAME"/> update. The update process is completed when the user next reboots the device.
1730 If you set this policy, users cannot change or override it.
1732 Note: Currently, automatic reboots are only enabled while the login screen is being shown or a Kiosk app session is in progress. This will change in the future and the policy will always apply, regardless of whether a session of any particular type is in progress or not.</translation>
1733 <translation id="5511702823008968136">Enable Bookmark Bar</translation>
1734 <translation id="5105313908130842249">Screen lock delay when running on battery power</translation>
1735 <translation id="7882585827992171421">This policy is active in retail mode only.
1737 Determines the id of the extension to be used as a screen saver on the sign-in screen. The extension must be part of the AppPack that is configured for this domain through the DeviceAppPack policy.</translation>
1738 <translation id="1796466452925192872">Allows you to specify which URLs are allowed to install extensions, apps and themes.
1740 Starting in Chrome 21, it is more difficult to install extensions, apps and user scripts from outside the Chrome Web Store. Previously, users could click on a link to a *.crx file, and Chrome would offer to install the file after a few warnings. After Chrome 21, such files must be downloaded and dragged onto the Chrome settings page. This setting allows specific URLs to have the old, easier installation flow.
1742 Each item in this list is an extension-style match pattern (see http://code.google.com/chrome/extensions/match_patterns.html). Users will be able to easily install items from any URL that matches an item in this list. Both the location of the *.crx file and the page where the download is started from (i.e. the referrer) must be allowed by these patterns.
1744 ExtensionInstallBlacklist takes precedence over this policy. That is, an extension on the blacklist won't be installed, even if it happens from a site on this list.</translation>
1745 <translation id="2113068765175018713">Limit device uptime by automatically rebooting</translation>
1746 <translation id="4224610387358583899">Screen lock delays</translation>
1747 <translation id="5388730678841939057">Selects the strategy used to free up disk space during automatic clean-up</translation>
1748 <translation id="7848840259379156480">Allows you to configure the default HTML renderer when <ph name="PRODUCT_FRAME_NAME"/> is installed.
1749 The default setting is to allow the host browser do the rendering, but you
1750 can optionally override this and have <ph name="PRODUCT_FRAME_NAME"/> render HTML pages by default.</translation>
1751 <translation id="186719019195685253">Action to take when the idle delay is reached while running on AC power</translation>
1752 <translation id="197143349065136573">Enables the old web-based signin flow.
1754 This setting is useful for enterprise customers who are using SSO solutions that are not compatible with the new inline signin flow yet.
1755 If you enable this setting, the old web-based signin flow would be used.
1756 If you disable this setting or leave it not set, the new inline signin flow would be used by default. Users may still enable the old web-based signin flow through the command line flag – enable-web-based-signin.
1758 The experimental setting will be removed in the future when the inline signin fully supports all SSO signin flows.</translation>
1759 <translation id="4121350739760194865">Prevent app promotions from appearing on the new tab page</translation>
1760 <translation id="2127599828444728326">Allow notifications on these sites</translation>
1761 <translation id="3973371701361892765">Never auto-hide the shelf</translation>
1762 <translation id="7635471475589566552">Configures the application locale in <ph name="PRODUCT_NAME"/> and prevents users from changing the locale.
1764 If you enable this setting, <ph name="PRODUCT_NAME"/> uses the specified locale. If the configured locale is not supported, 'en-US' is used instead.
1766 If this setting is disabled or not set, <ph name="PRODUCT_NAME"/> uses either the user-specified preferred locale (if configured), the system locale or the default locale 'en-US'.</translation>
1767 <translation id="2948087343485265211">Specifies whether audio activity affects power management.
1769 If this policy is set to True or is unset, the user is not considered to be idle while audio is playing. This prevents the idle timeout from being reached and the idle action from being taken. However, screen dimming, screen off and screen lock will be performed after the configured timeouts, irrespective of audio activity.
1771 If this policy is set to False, audio activity does not prevent the user from being considered idle.</translation>
1772 <translation id="7842869978353666042">Configure Google Drive options</translation>
1773 <translation id="718956142899066210">Connection types allowed for updates</translation>
1774 <translation id="1734716591049455502">Configure remote access options</translation>
1775 <translation id="7336878834592315572">Keep cookies for the duration of the session.</translation>
1776 <translation id="7715711044277116530">Percentage by which to scale the screen dim delay in presentation mode</translation>
1777 <translation id="8777120694819070607">Allows <ph name="PRODUCT_NAME"/>.</translation>
1778 <translation id="2629448496147630947">Configure remote access options in <ph name="PRODUCT_NAME"/>.
1780 These features are ignored unless the Remote Access web application is installed.</translation>
1781 <translation id="4001275826058808087">IT admins for enterprise devices can use this flag to control whether to allow users to redeem offers through Chrome OS Registration.
1783 If this policy is set to true or left not set, users will be able to redeem offers through Chrome OS Registration.
1785 If this policy is set to false, user will not be able to redeem offers.</translation>
1786 <translation id="1310699457130669094">You can specify a URL to a proxy .pac file here.
1788 This policy only takes effect if you have selected manual proxy settings at 'Choose how to specify proxy server settings'.
1790 You should leave this policy unset if you have selected any other mode for setting proxy policies.
1792 For detailed examples, visit:
1793 <ph name="PROXY_HELP_URL"/></translation>
1794 <translation id="1509692106376861764">This policy has been retired as of <ph name="PRODUCT_NAME"/> version 29.</translation>
1795 <translation id="5464816904705580310">Configure settings for managed users.</translation>
1796 <translation id="3219421230122020860">Incognito mode available.</translation>
1797 <translation id="7690740696284155549">Configures the directory that <ph name="PRODUCT_NAME"/> will use for downloading files.
1799 If you set this policy, <ph name="PRODUCT_NAME"/> will use the provided directory regardless of whether the user has specified one or enabled the flag to be prompted for download location every time.
1801 See http://www.chromium.org/administrators/policy-list-3/user-data-directory-variables for a list of variables that can be used.
1803 If this policy is left not set the default download directory will be used and the user will be able to change it.</translation>
1804 <translation id="7381326101471547614">Disables use of the SPDY protocol in <ph name="PRODUCT_NAME"/>.
1806 If this policy is enabled the SPDY protocol will not be available in <ph name="PRODUCT_NAME"/>.
1808 Setting this policy to disabled will allow the usage of SPDY.
1810 If this policy is left not set, SPDY will be available.</translation>
1811 <translation id="2208976000652006649">Parameters for search URL which uses POST</translation>
1812 <translation id="1583248206450240930">Use <ph name="PRODUCT_FRAME_NAME"/> by default</translation>
1813 <translation id="1047128214168693844">Do not allow any site to track the users' physical location</translation>
1814 <translation id="4101778963403261403">Configures the type of the default home page in <ph name="PRODUCT_NAME"/> and prevents users from changing home page preferences. The home page can either be set to a URL you specify or set to the New Tab Page.
1816 If you enable this setting, the New Tab Page is always used for the home page and the home page URL location is ignored.
1818 If you disable this setting, the user's homepage will never be the New Tab Page, unless its URL is set to 'chrome://newtab'.
1820 If you enable or disable this setting, users cannot change their home page type in <ph name="PRODUCT_NAME"/>.
1822 Leaving this policy not set will allow the user to choose whether the new tab page is his home page on his own.</translation>
1823 <translation id="8970205333161758602">Suppress the <ph name="PRODUCT_FRAME_NAME"/> turn-down prompt</translation>
1824 <translation id="3273221114520206906">Default JavaScript setting</translation>
1825 <translation id="4025586928523884733">Blocks third party cookies.
1827 Enabling this setting prevents cookies from being set by web page elements that are not from the domain that is in the browser's address bar.
1829 Disabling this setting allows cookies to be set by web page elements that are not from the domain that is in the browser's address bar and prevents users from changing this setting.
1831 If this policy is left unset, third party cookies will be enabled but the user will be able to change that.</translation>
1832 <translation id="4604931264910482931">Configure native messaging blacklist</translation>
1833 <translation id="6810445994095397827">Block JavaScript on these sites</translation>
1834 <translation id="6672934768721876104">This policy is deprecated, use ProxyMode instead.
1836 Allows you to specify the proxy server used by <ph name="PRODUCT_NAME"/> and prevents users from changing proxy settings.
1838 If you choose to never use a proxy server and always connect directly, all other options are ignored.
1840 If you choose to use system proxy settings or auto detect the proxy server, all other options are ignored.
1842 If you choose manual proxy settings, you can specify further options in 'Address or URL of proxy server', 'URL to a proxy .pac file' and 'Comma-separated list of proxy bypass rules'.
1844 For detailed examples, visit:
1845 <ph name="PROXY_HELP_URL"/>
1847 If you enable this setting, <ph name="PRODUCT_NAME"/> ignores all proxy-related options specified from the command line.
1849 Leaving this policy unset will allow the users to choose the proxy settings on their own.</translation>
1850 <translation id="3780152581321609624">Include non-standard port in Kerberos SPN</translation>
1851 <translation id="1749815929501097806">Sets the Terms of Service that the user must accept before starting a device-local account session.
1853 If this policy is set, <ph name="PRODUCT_OS_NAME"/> will download the Terms of Service and present them to the user whenever a device-local account session is starting. The user will only be allowed into the session after accepting the Terms of Service.
1855 If this policy is not set, no Terms of Service are shown.
1857 The policy should be set to a URL from which <ph name="PRODUCT_OS_NAME"/> can download the Terms of Service. The Terms of Service must be plain text, served as MIME type text/plain. No markup is allowed.</translation>
1858 <translation id="2623014935069176671">Wait for initial user activity</translation>
1859 <translation id="2660846099862559570">Never use a proxy</translation>
1860 <translation id="637934607141010488">Report list of device users that have recently logged in.
1862 If the policy is set to false, the users will not be reported.</translation>
1863 <translation id="1956493342242507974">Configure power management on the log-in screen in <ph name="PRODUCT_OS_NAME"/>.
1865 This policy lets you configure how <ph name="PRODUCT_OS_NAME"/> behaves when there is no user activity for some amount of time while the log-in screen is being shown. The policy controls multiple settings. For their individual semantics and value ranges, see the corresponding policies that control power management within a session. The only deviations from these policies are:
1866 * The actions to take on idle or lid close cannot be to end the session.
1867 * The default action taken on idle when running on AC power is to shut down.
1869 If a setting is left unspecified, a default value is used.
1871 If this policy is unset, defaults are used for all settings.</translation>
1872 <translation id="1435659902881071157">Device-level network configuration</translation>
1873 <translation id="8071636581296916773">Enables usage of relay servers when remote clients are trying to establish a connection to this machine.
1875 If this setting is enabled, then remote clients can use relay servers to connect to this machine when a direct connection is not available (e.g. due to firewall restrictions).
1877 Note that if the policy <ph name="REMOTEACCESSHOSTFIREWALLTRAVERSAL_POLICY_NAME"/> is disabled, this policy will be ignored.
1879 If this policy is not set, the setting will be enabled.</translation>
1880 <translation id="2131902621292742709">Screen dim delay when running on battery power</translation>
1881 <translation id="5781806558783210276">Specifies the length of time without user input after which the idle action is taken when running on battery power.
1883 When this policy is set, it specifies the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> takes the idle action, which can be configured separately.
1885 When this policy is unset, a default length of time is used.
1887 The policy value should be specified in milliseconds.</translation>
1888 <translation id="5512418063782665071">Home page URL</translation>
1889 <translation id="2948381198510798695"><ph name="PRODUCT_NAME"/> will bypass any proxy for the list of hosts given here.
1891 This policy only takes effect if you have selected manual proxy settings at 'Choose how to specify proxy server settings'.
1893 You should leave this policy unset if you have selected any other mode for setting proxy policies.
1895 For more detailed examples, visit:
1896 <ph name="PROXY_HELP_URL"/></translation>
1897 <translation id="6658245400435704251">Specifies the number of seconds up to which a device may randomly delay its download of an update from the time the update was first pushed out to the server. The device may wait a portion of this time in terms of wall-clock-time and the remaining portion in terms of the number of update checks. In any case, the scatter is upper bounded to a constant amount of time so that a device does not ever get stuck waiting to download an update forever.</translation>
1898 <translation id="102492767056134033">Set default state of the on-screen keyboard on the login screen</translation>
1899 <translation id="523505283826916779">Accessibility settings</translation>
1900 <translation id="1948757837129151165">Policies for HTTP Authentication</translation>
1901 <translation id="5946082169633555022">Beta channel</translation>
1902 <translation id="7187256234726597551">If true, remote attestation is allowed for the device and a certificate will automatically be generated and uploaded to the Device Management Server.
1904 If it is set to false, or if it is not set, no certificate will be generated and calls to the enterprise.platformKeysPrivate extension API will fail.</translation>
1905 <translation id="5242696907817524533">Configures a list of managed bookmarks.
1907 The policy is a list of bookmarks, and each bookmark is a dictionary containing the bookmark &quot;name&quot; and target &quot;url&quot;.
1909 These bookmarks are placed in a Managed bookmarks folder inside the Mobile bookmarks. These bookmarks can't be modified by the user.
1911 When this policy is set then the Managed bookmarks are the default folder opened when the bookmarks view is opened in Chrome.
1913 Managed bookmarks are not synced to the user account.</translation>
1914 <translation id="6757375960964186754">Show <ph name="PRODUCT_OS_NAME"/> accessibility options in the system menu.
1916 If this policy is set to true, Accessibility options always appear in system tray menu.
1918 If this policy is set to false, Accessibility options never appear in system tray menu.
1920 If you set this policy, users cannot change or override it.
1922 If this policy is left unset, Accessibility options will not appear in the system tray menu, but the user can cause the Accessibility options to appear via the Settings page.</translation>
1923 <translation id="8303314579975657113">Specifies which GSSAPI library to use for HTTP Authentication. You can set either just a library name or a full path.
1925 If no setting is provided, <ph name="PRODUCT_NAME"/> will fall back to using a default library name.</translation>
1926 <translation id="8549772397068118889">Warn when visiting sites outside of content packs</translation>
1927 <translation id="7749402620209366169">Enables two-factor authentication for remote access hosts instead of a user-specified PIN.
1929 If this setting is enabled, then users must provide a valid two-factor code when accessing a host.
1931 If this setting is disabled or not set, then two-factor will not be enabled and the default behaviour of having a user-defined PIN will be used.</translation>
1932 <translation id="6698424063018171973">Restricts the UDP port range used by the remote access host in this machine.
1934 If this policy is not set, or if it is set to an empty string, the remote access host will be allowed to use any available port, unless the policy <ph name="REMOTEACCESSHOSTFIREWALLTRAVERSAL_POLICY_NAME"/> is disabled, in which case the remote access host will use UDP ports in the 12400-12409 range.</translation>
1935 <translation id="7329842439428490522">Specifies the length of time without user input after which the screen is turned off when running on battery power.
1937 When this policy is set to a value greater than zero, it specifies the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> turns off the screen.
1939 When this policy is set to zero, <ph name="PRODUCT_OS_NAME"/> does not turn off the screen when the user becomes idle.
1941 When this policy is unset, a default length of time is used.
1943 The policy value should be specified in milliseconds. Values are clamped to be less than or equal the idle delay.</translation>
1944 <translation id="384743459174066962">Allows you to set a list of url patterns that specify sites which are not allowed to open pop-ups.
1946 If this policy is left unset, the global default value will be used for all sites either from the 'DefaultPop-upsSetting' policy, if it is set, or the user's personal configuration otherwise.</translation>
1947 <translation id="5645779841392247734">Allow cookies on these sites</translation>
1948 <translation id="4043912146394966243"> The types of connections that are allowed to use for OS updates. OS updates potentially put heavy strain on the connection due to their size and may incur additional cost. Therefore, they are by default not enabled for connection types that are considered expensive, which include WiMax, Bluetooth and Cellular at the moment.
1950 The recognised connection type identifiers are &quot;ethernet&quot;, &quot;wifi&quot;, &quot;wimax&quot;, &quot;bluetooth&quot; and &quot;cellular&quot;.</translation>
1951 <translation id="6652197835259177259">Locally managed users settings</translation>
1952 <translation id="2808013382476173118">Enables usage of STUN servers when remote clients are trying to establish a connection to this machine.
1954 If this setting is enabled, then remote clients can discover and connect to this machine even if they are separated by a firewall.
1956 If this setting is disabled and outgoing UDP connections are filtered by the firewall, then this machine will only allow connections from client machines within the local network.
1958 If this policy is not set, the setting will be enabled.</translation>
1959 <translation id="3243309373265599239">Specifies the length of time without user input after which the screen is dimmed when running on AC power.
1961 When this policy is set to a value greater than zero, it specifies the length of time that the user must remain idle before <ph name="PRODUCT_OS_NAME"/> dims the screen.
1963 When this policy is set to zero, <ph name="PRODUCT_OS_NAME"/> does not dim the screen when the user becomes idle.
1965 When this policy is unset, a default length of time is used.
1967 The policy value should be specified in milliseconds. Values are clamped to be less than or equal to the screen off delay (if set) and the idle delay.</translation>
1968 <translation id="3859780406608282662">Add a parameter to the fetching of the Variations seed in <ph name="PRODUCT_OS_NAME"/>.
1970 If specified, will add a query parameter called 'restrict' to the URL used to fetch the Variations seed. The value of the parameter will be the value specified in this policy.
1972 If not specified, will not modify the Variations seed URL.</translation>
1973 <translation id="7049373494483449255">Enables <ph name="PRODUCT_NAME"/> to submit documents to <ph name="CLOUD_PRINT_NAME"/> for printing. NOTE: This only affects <ph name="CLOUD_PRINT_NAME"/> support in <ph name="PRODUCT_NAME"/>. It does not prevent users from submitting print jobs on websites.
1975 If this setting is enabled or not configured, users can print to <ph name="CLOUD_PRINT_NAME"/> from the <ph name="PRODUCT_NAME"/> print dialogue.
1977 If this setting is disabled, users cannot print to <ph name="CLOUD_PRINT_NAME"/> from the <ph name="PRODUCT_NAME"/> print dialogue</translation>
1978 <translation id="4088589230932595924">Incognito mode forced.</translation>
1979 <translation id="5862253018042179045">Set the default state of the spoken feedback accessibility feature on the login screen.
1981 If this policy is set to true, spoken feedback will be enabled when the login screen is shown.
1983 If this policy is set to false, spoken feedback will be disabled when the login screen is shown.
1985 If you set this policy, users can temporarily override it by enabling or disabling spoken feedback. However, the user's choice is not persistent and the default is restored whenever the login screen is shown anew or the user remains idle on the login screen for a minute.
1987 If this policy is left unset, spoken feedback is disabled when the login screen is first shown. Users can enable or disable spoken feedback at any time and its status on the login screen is persisted between users.</translation>
1988 <translation id="8197918588508433925">This policy specifies the allowed extensions to use Enterprise Platform Keys API chrome.enterprise.platformKeysPrivate.challengeUserKey() for remote attestation. Extensions must be added to this list to use the API.
1990 If an extension is not in the list, or the list is not set, the call to the API will fail with an error code.</translation>
1991 <translation id="2811293057593285123">The Safe Browsing service shows a warning page when users navigate to sites that are flagged as potentially malicious. Enabling this setting prevents users from proceeding anyway from the warning page to the malicious site.
1993 If this setting is disabled or not configured then users can choose to proceed to the flagged site after being shown the warning.</translation>
1994 <translation id="7649638372654023172">Configures the default home page URL in <ph name="PRODUCT_NAME"/> and prevents users from changing it.
1996 The home page is the page opened by the Home button. The pages that open on startup are controlled by the RestoreOnStartup policies.
1998 The home page type can either be set to a URL you specify here or set to the New Tab Page. If you select the New Tab Page, then this policy does not take effect.
2000 If you enable this setting, users cannot change their home page URL in <ph name="PRODUCT_NAME"/>, but they can can still choose the New Tab Page as their home page.
2002 Leaving this policy not set will allow the user to choose his home page on his own if HomepageIsNewTabPage is not set too.</translation>
2003 <translation id="3806576699227917885">Allow playing audio.
2005 When this policy is set to false, audio output will not be available on the device while the user is logged in.
2007 This policy affects all types of audio output and not only the built-in speakers. Audio accessibility features are also inhibited by this policy. Do not enable this policy if a screen reader is required for the user.
2009 If this setting is set to true or not configured then users can use all supported audio outputs on their device.</translation>
2010 <translation id="6517678361166251908">Allow gnubby authentication</translation>
2011 <translation id="4858735034935305895">Allow fullscreen mode</translation>
2012 </translationbundle>