Information
When leaving the setting _RestoreOnStartup _unset results in the use of _DefaultCookiesSetting _for all sites, if it's set. If _DefaultCookiesSetting _is not set, the user's personal setting applies.
Disabled (0, user's personal setting applies)
Allow all sites to set local data (1)
Do not allow any site to set local data (2)
Keep cookies for the duration of the session (4)
The recommended state for this setting is: Enabled with a value of Keep cookies for the duration of the session (4)
NOTE: If the RestoreOnStartup setting is set to restore URLs from previous sessions this setting will not be respected and cookies will be stored permanently for those sites. An example of those URLs are SSO or intranet sites.
Rationale:
Permanently stored cookies may be used for malicious intent.
Impact:
If this setting is enabled, cookies will be cleared when the session closes.
Solution
To establish the recommended configuration via Group Policy, set the following UI path to Enabled: Keep cookies for the duration of the session:
Computer Configuration\Administrative Templates\Google\Google Chrome\Content Settings\Default cookies setting
Default Value:
Unset (Same as Disabled, but user can change)