Overview
The Linux Google Chrome Extension Deployment and Blocking Policy allows administrators to manage Chrome extension behavior on Linux devices. This policy supports both BYOD (Bring Your Own Device) and company-owned device configurations, giving IT teams centralized control over which extensions are installed, blocked, or enforced across their Linux fleet.
Supported Platforms
Requirement | Details |
Operating System | Linux |
Device Ownership | Company-owned, BYOD |
Prerequisites | None |
Policy Fields
1. Swif Extension (swifChromeExtension)
Property | Value |
Type | Boolean |
Default |
|
Required | No |
Platform | Linux |
Enables or disables the Swif Chrome Extension on the target device. When set to true, the Swif extension is activated for browser-level management and telemetry.
2. Install Extension ID List (installExtensionAppIds)
Property | Value |
Type | Array of Strings |
Default | None |
Required | No |
Platform | Linux |
Specifies a list of Chrome extension IDs to be installed silently, without user interaction. Extensions deployed through this field:
Are installed automatically in the background.
Cannot be uninstalled by the end user.
Cannot be disabled by the end user.
This is ideal for enforcing security, compliance, or productivity extensions across your organization.
Example value:
["abcdefghijklmnopabcdefghijklmnop", "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"]
Tip: You can find an extension's ID from the Chrome Web Store URL or by navigating to chrome://extensions with developer mode enabled.
3. Blocked Extension ID List (blockExtensionAppIds)
Property | Value |
Type | Array of Strings |
Default | None |
Required | No |
Platform | Linux |
Specifies a list of Chrome extension IDs that users are prohibited from installing. If a blocked extension is already installed on the device:
It will be automatically disabled.
The user will not be able to re-enable it.
This is useful for preventing known-risky, unapproved, or non-compliant extensions from running in your environment.
Example value:
["abcdefghijklmnopabcdefghijklmnop"]
4. Enable Incognito Mode Only (incognitoModeOnly)
Property | Value |
Type | Boolean |
Default |
|
Required | No |
Platform | Linux |
When set to true, the browser is restricted to incognito mode only. This prevents persistent browsing data (cookies, history, cache) from being stored on the device — a common requirement for shared workstations or high-security environments.
Usage Notes
Install and Block lists are independent. An extension ID should not appear in both
installExtensionAppIdsandblockExtensionAppIds. If it does, behavior may be unpredictable.Silent installs require the Chrome Web Store. Extensions specified in the install list must be available on the Chrome Web Store (or your organization's self-hosted extension repository) for silent deployment to succeed.
Policy applies at the browser level. All Chrome profiles on the managed device will be subject to this policy.
Combining with Incognito Mode. Forcing incognito-only mode does not affect extension installation or blocking — both policies operate independently.
Quick Reference
Field | Display Name | Type | Default |
| Swif Extension | Boolean |
|
| Install Extension ID List | Array of Strings | — |
| Blocked Extension ID List | Array of Strings | — |
| Enable Incognito Mode Only | Boolean |
|