Missing policies in policy template v83.0.478.18 (beta) for MacOS

%3CLINGO-SUB%20id%3D%22lingo-sub-1378955%22%20slang%3D%22en-US%22%3EMissing%20policies%20in%20policy%20template%20v83.0.478.18%20(beta)%20for%20MacOS%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1378955%22%20slang%3D%22en-US%22%3E%3CP%3EHello%2C%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Ei%20compared%20the%20policies%20in%20the%20admx%20template%20with%20the%20policy%20template%20for%20MacOS%20and%20found%20some%20missing%20policies%20in%20the%20policy_manifest.json.%20Some%20are%20missing%20for%20obvious%20reasons%20like%20IE%20integration%20or%20SmartScreen%20for%20others%20i'm%20not%20sure%20about%20the%20reason%20since%20they%20are%20for%20example%20mentioned%20in%20the%20description%20of%20related%20policies.%26nbsp%3B%3C%2FP%3E%3CP%3EHere%20a%20complete%20list%20of%20the%20missing%20policies%3A%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAllowTokenBindingForUrls%20-%20Configure%20the%20list%20of%20sites%20for%20which%20Microsoft%20Edge%20will%20attempt%20to%20establish%20a%20Token%20Binding%20with.%3CBR%20%2F%3EApplicationLocaleValue%20-%20Set%20application%20locale%3CBR%20%2F%3EBackgroundModeEnabled%20-%20Continue%20running%20background%20apps%20after%20Microsoft%20Edge%20closes%3CBR%20%2F%3EClickOnceEnabled%20-%20Allow%20users%20to%20open%20files%20using%20the%20ClickOnce%20protocol%3CBR%20%2F%3EConfigureOnPremisesAccountAutoSignIn%20-%20Configure%20automatic%20sign%20in%20with%20an%20Active%20Directory%20domain%20account%20when%20there%20is%20no%20Azure%20AD%20domain%20account%3CBR%20%2F%3EConfigureShare%20-%20Configure%20the%20Share%20experience%3CBR%20%2F%3EDeleteDataOnMigration%20-%20Delete%20old%20browser%20data%20on%20migration%3CBR%20%2F%3EDirectInvokeEnabled%20-%20Allow%20users%20to%20open%20files%20using%20the%20DirectInvoke%20protocol%3CBR%20%2F%3EForceNetworkInProcess%20-%20Force%20networking%20code%20to%20run%20in%20the%20browser%20process%3CBR%20%2F%3EFullscreenAllowed%20-%20Allow%20full%20screen%20mode%3CBR%20%2F%3EInternetExplorerIntegrationLevel%20-%20Configure%20Internet%20Explorer%20integration%3CBR%20%2F%3EInternetExplorerIntegrationSiteList%20-%20Configure%20the%20Enterprise%20Mode%20Site%20List%3CBR%20%2F%3EInternetExplorerIntegrationSiteRedirect%20-%20Specify%20how%20%22in-page%22%20navigations%20to%20unconfigured%20sites%20behave%20when%20started%20from%20Internet%20Explorer%20mode%20pages%3CBR%20%2F%3ENonRemovableProfileEnabled%20-%20Configure%20whether%20a%20user%20always%20has%20a%20default%20profile%20automatically%20signed%20in%20with%20their%20work%20or%20school%20account%3CBR%20%2F%3EPinningWizardAllowed%20-%20Allow%20Pin%20to%20taskbar%20wizard%3CBR%20%2F%3ERendererCodeIntegrityEnabled%20-%20Enable%20renderer%20code%20integrity%3CBR%20%2F%3ERequireOnlineRevocationChecksForLocalAnchors%20-%20Specify%20if%20online%20OCSP%2FCRL%20checks%20are%20required%20for%20local%20trust%20anchors%3CBR%20%2F%3ESendIntranetToInternetExplorer%20-%20Send%20all%20intranet%20sites%20to%20Internet%20Explorer%3CBR%20%2F%3ESmartScreenForTrustedDownloadsEnabled%20-%20Force%20Microsoft%20Defender%20SmartScreen%20checks%20on%20downloads%20from%20trusted%20sources%3CBR%20%2F%3ESpellcheckLanguage%20-%20Enable%20specific%20spellcheck%20languages%3CBR%20%2F%3ESpellcheckLanguageBlocklist%20-%20Force%20disable%20spellcheck%20languages%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Occasional Contributor

Hello, 

 

i compared the policies in the admx template with the policy template for MacOS and found some missing policies in the policy_manifest.json. Some are missing for obvious reasons like IE integration or SmartScreen for others i'm not sure about the reason since they are for example mentioned in the description of related policies. 

Here a complete list of the missing policies:

 

AllowTokenBindingForUrls - Configure the list of sites for which Microsoft Edge will attempt to establish a Token Binding with.
ApplicationLocaleValue - Set application locale
BackgroundModeEnabled - Continue running background apps after Microsoft Edge closes
ClickOnceEnabled - Allow users to open files using the ClickOnce protocol
ConfigureOnPremisesAccountAutoSignIn - Configure automatic sign in with an Active Directory domain account when there is no Azure AD domain account
ConfigureShare - Configure the Share experience
DeleteDataOnMigration - Delete old browser data on migration
DirectInvokeEnabled - Allow users to open files using the DirectInvoke protocol
ForceNetworkInProcess - Force networking code to run in the browser process
FullscreenAllowed - Allow full screen mode
InternetExplorerIntegrationLevel - Configure Internet Explorer integration
InternetExplorerIntegrationSiteList - Configure the Enterprise Mode Site List
InternetExplorerIntegrationSiteRedirect - Specify how "in-page" navigations to unconfigured sites behave when started from Internet Explorer mode pages
NonRemovableProfileEnabled - Configure whether a user always has a default profile automatically signed in with their work or school account
PinningWizardAllowed - Allow Pin to taskbar wizard
RendererCodeIntegrityEnabled - Enable renderer code integrity
RequireOnlineRevocationChecksForLocalAnchors - Specify if online OCSP/CRL checks are required for local trust anchors
SendIntranetToInternetExplorer - Send all intranet sites to Internet Explorer
SmartScreenForTrustedDownloadsEnabled - Force Microsoft Defender SmartScreen checks on downloads from trusted sources
SpellcheckLanguage - Enable specific spellcheck languages
SpellcheckLanguageBlocklist - Force disable spellcheck languages

0 Replies