Disable Browser Password Saving via Group Policy

1. Login to your Domain Controller.
2. Go to Start > Open Run and type gpmc.msc to open the Group Policy Management Console > Click OK
   
3. Go to Group Policy Object > Right Click then select New to create a New GPO
4. On New GPO page, enter the name of the GPO (i.e. IE Disable Password Saving) on the Name field > Click OK
5. Right click on the newly created GPO and select Edit to open the Group Policy Management Editor
6. On the Group Policy Management Editor go to User Configuration > Policies > Administrative Templates > Windows Components > Internet Explorer
7. Set the following policies below then close the Group Policy Management Editor.
8. Go back to Group Policy Management and right click to the Organizational Unit (OU) where you want to apply the GPO, then click Link an Existing GPO. The group policy will be applied to the User Objects that are part of this OU.
9. On Select GPO page the choose newly created GPO and click OK
10. New GPO is now linked to the desired Organizational Unit (OU).
11. On the user’s computer (Users that are part of the OU where GPO was linked). Open command prompt and type gpupdate /force to apply the policy right away or wait for it to replicate.

1. Login to your Domain Controller.
2. Go to Start > Open Run and type gpmc.msc to open the Group Policy Management Console > Click OK
3. Go to Group Policy Object > Right Click then select New to create a New GPO
4. On New GPO page, enter the name of the GPO (i.e. Chrome Disable Password Saving) on the Name field > Click OK
5. Right click on the newly created GPO and select Edit to open the Group Policy Management Editor
6. On the Group Policy Management Editor go to User Configuration > Policies > Adminitrative Templates > Google > Google Chrome and Google Chrome – Default Settings (Users can override). If there is no ADMX template for Chrome, please refer to the Prerequisite section for Google Chrome.
7. Set the following policies below then close the Group Policy Management Editor.
   Disable saving browser history: Enabled
   Enable AutoFill: Disabled
   Enable saving password to the password manager: Disabled
   Default cookies setting: Enabled: Keep cookies for the duration of the session
   Enable saving password to the password manager: Disabled
8. Go back to Group Policy Management and right click to the Organizational Unit (OU) where you want to apply the GPO, then click Link an Existing GPO. The group policy will be applied to the User Objects that are part of this OU.
9. On Select GPO page the choose newly created GPO and click OK
10. New GPO is now linked to the desired Organizational Unit (OU).
11. On the user’s computer (Users that are part of the OU where GPO was linked). Open command prompt and type gpupdate /force to apply the policy right away or wait for it to replicate.

1. Login to your Domain Controller.
2. Open windows Explorer and go to \<your_domain>NETLOGON.
3. Open notepad and paste the code below.

//Configure Firefox using mozilla.cfg
pref(“general.config.filename”, “mozilla.cfg”);
pref(“general.config.obscure_value”, 0);

4. Name the file as local-settings.js. This java script will call the file (Mozilla.cfg) that contains the configuration to be enforced in Firefox.

5. Open notepad and paste the code below.

//
lockPref(“signon.rememberSignons”, false);
lockPref(“privacy.sanitize.sanitizeOnShutdown”, true); // Always clear my private data when I close Firefox
lockPref(“privacy.sanitize.timeSpan”, 0); // 0 = Clear everything
lockPref(“privacy.clearOnShutdown.history”, true);
lockPref(“privacy.clearOnShutdown.formdata”, true);
lockPref(“privacy.clearOnShutdown.passwords”, true);
lockPref(“privacy.clearOnShutdown.downloads”, true);
lockPref(“privacy.clearOnShutdown.cookies”, true);
lockPref(“privacy.clearOnShutdown.cache”, true);
lockPref(“privacy.clearOnShutdown.sessions”, true);
lockPref(“privacy.clearOnShutdown.offlineApps”, true);
lockPref(“privacy.clearOnShutdown.siteSettings”, true);
lockPref(“privacy.cpd.history”, true);
lockPref(“privacy.cpd.formdata”, true);
lockPref(“privacy.cpd.passwords”, true);

6. Name the file as Mozilla.cfg. This will be the configuration file to be enforced in Firefox.

7. Copy the files local-settings.js and cfg and paste it to \<your_domain>NETLOGON
8. Go to Start > Open Run and type gpmc.msc to open the Group Policy Management Console > Click OK
9. Go to Group Policy Object > Right Click then select New to create a New GPO
10. On New GPO page, enter the name of the GPO (i.e. Firefox Disable Password Saving) on the Name field > Click OK
11. Right click on the newly created GPO and select Edit to open the Group Policy Management Editor
12. On the Group Policy Management Editor go to Computer Configuration > Preferences > Windows Settings > Files
13. Create the following polices below with their respective File name, Action, Source and Target.

For 64 bit

Local-settings.js
Action: Update
Source: \<your_domain>NETLOGONlocal-settings.js
Target: C:Program FilesMozilla Firefoxdefaultspreflocal-settings.js

Mozilla.cfg
Action: Update
Source: \<your_domain>NETLOGONmozilla.cfg
Target: C:Program FilesMozilla Firefoxmozilla.cfg

For 32 bit

Local-settings.js
Action: Update
Source: \<your_domain>NETLOGONlocal-settings.js
Target: C:Program Files (x86)Mozilla Firefoxdefaultspreflocal-settings.js

Mozilla.cfg
Action: Update
Source: \<your_domain>NETLOGONmozilla.cfg
Target: C:Program Files (x86)Mozilla Firefoxmozilla.cfg

14. Close the Group Policy Management Editor page.
15. Go back to Group Policy Management and right click to the Organizational Unit (OU) where you want to apply the GPO, then click Link an Existing GPO. The group policy will be applied to the Computer Objects that are part of this OU.
16. On Select GPO page the choose newly created GPO and click OK
17. New GPO is now linked to the desired Organizational Unit (OU).
18. On the user’s computer (Users that are part of the OU where GPO was linked). Open command prompt and type gpupdate /force to apply the policy right away or wait for it to replicate.

1. Login to your Domain Controller.
2. Go to Start > Open Run and type gpmc.msc to open the Group Policy Management Console > Click OK
3. Go to Group Policy Object > Right Click then select New to create a New GPO
4. On New GPO page, enter the name of the GPO (i.e. Edge Disable Password Saving) on the Name field > Click OK
5. Right click on the newly created GPO and select Edit to open the Group Policy Management Editor
6. On the Group Policy Management Editor go to User Configuration > Policies > Adminitrative Templates > Microsoft Edge. ADMX template can be downloaded from here
7. Set the following policies below then close the Group Policy Management Editor.
   Enable AutoFill for credit cards: Disabled
   Enable AutoFill for addresses: Disabled
8. Disable synchronization of data using Microsoft sync services Enable
   Password manager and protection/Enable saving password to the password manager: Disabled
   
9. Go back to Group Policy Management and right click to the Organizational Unit (OU) where you want to apply the GPO, then click Link an Existing GPO. The group policy will be applied to the User Objects that are part of this OU.
10. On Select GPO page the choose newly created GPO and click OK
11. New GPO is now linked to the desired Organizational Unit (OU).
12. On the user’s computer (Users that are part of the OU where GPO was linked). Open command prompt and type gpupdate /force to apply the policy right away or wait for it to replicate.