Information
Specifies which HTTP authentication schemes are supported by Google Chrome.
Disabled (0): Allows all supported authentication schemes.
The recommended state for this setting is: Enabled with the value of ntlm, negotiate
Rationale:
Possible values are 'basic', 'digest', 'ntlm' and 'negotiate'. Basic and Digest authentication do not provide sufficient security and can lead to submission of users password in plaintext or minimal protection (Integrated Authentication is supported for negotiate and ntlm challenges only).
Impact:
If some legacy application(s) or website(s) required insecure authentication mechanisms they will not work correctly.
Solution
To establish the recommended configuration via Group Policy, set the following UI path to Enabled: ntlm, negotiate:
Computer Configuration\Polices\Administrative Templates\Google\Google Chrome\HTTP Authentication\Supported authentication schemes
Default Value:
Unset (Same as Disabled, but user can change)