1. Home
  2. Disable 3rd Party Password Managers via Endpoint Manager (Intune)
Searching...

Disable 3rd Party Password Managers via Endpoint Manager (Intune)

Contents

Purpose

This article explains how to disable 3rd party password managers via Microsoft Endpoint Manager (Intune).

Prerequisites

  • Office 365 Global Administrator
  • Endpoint Manager Licensed and Deployed

Instructions – Create Policy

  1. Login to Office 365 Admin Center. https://admin.microsoft.com/Adminportal
  2. Go to Endpoint Manager.
  3. Click on Devices.
  4. Go to Configuration Profiles.
  5. Click on Create Profile.
  6. Continue below for the browsers required. You will need to create a Profile for each browser you want to block password managers on.
Microsoft Edge

  1. Configure the following and click Create. Platform “Windows 10 and Later”, Profile Type “Templates”, Template name “Administrative Templates”.
  2. Name the Profile “Microsoft Edge Block Unwanted Extensions” and click Next.
  3. In the search box type Control which extensions cannot be installed, select the setting then click Next.

  4. Chose Enabled, list the extension IDs you want to block then select Ok. List of common Edge Password Manager IDs below.Bitwarden: jbkfoedolllekgbhcbcoahefnbanhhlh
    1Password: dppgmdbiimibapkepcbdbmkaabgiofem
    Dashlane: gehmmocbbkpblljhkekmfhjpfbkclbph
    OneLogin: mpnjdddkcbccdhgahjdcjppglaecajdj
    Okta: ncoafaeidnkeafiehpkfoeklhajkpgij
    Keeper: lfochlioelphaglamdcakfjemolpichk
    Keeper: mpfckamfocjknfipmpjdkkebpnieooca
    LastPass: bbcinlkgjjkejfdpemiealijmmooekmp

    Keeper has published 2 extensions in the Edge Store, requiring both of the above IDs to be used when blocking the extension.

  6. Click Next.
  7. Leave scope as Default and click Next.
  8. Select All Users and All Devices (You may use custom groups as well). Click Next.
  9. Confirm the configuration and click Next.
  10. The policy will now deploy out to devices when they next check-in.

Google Chrome

  1. Configure the following and click Create. Platform “Windows 10 and Later“, Profile Type “Settings catalog
  2. Name and Description Google Chrome Block Unwanted Extensions and click Next

  3. In the search box type Configure extension installation blocklist, select the setting then click Next.
  4. Chose Enabled, list the extension IDs you want to block then select Ok. List of common Chrome Password Manager IDs below.
    Bitwarden: nngceckbapebfimnlniiiahkandclblb
    1Password: aeblfdkhhhdcdjpifhhbdiojplfjncoa
    Dashlane: fdjamakpfbbddfjaooikfcpapjohcfmg
    OneLogin: ioalpmibngobedobkmbhgmadaphocjdn
    Okta: glnpjglilkicbckjpbgcfkogebgllemb
    Keeper: bfogiafebfohielmmehodmfbbebbbpei
    LastPass: hdokiejnpimakedhajhdlcegeplioahd
  5. Click Next.
  6. Leave scope as Default and click Next.
  7. Select All Users and All Devices (You may use custom groups as well). Click Next.
  8. Confirm the configuration and click Next.
  9. The policy will now deploy out to devices when they next check-in.

Updated on September 14, 2023
Tagged:
Need Support?
Can't find the answer you're looking for?
Contact Support