- Install below command as a PowerShell (.ps1) script and save. Ex: compliance.ps1.
- Get-Item -path "HKLM:\SOFTWARE\Microsoft\Windows Defender\Miscellaneous Configuration" | New-ItemProperty -Name DlpDisableBrowserCache -Value 0 -Force
- Go to Intune > Devices > Scripts and select Add
- Browse to the location of the script created (compliance.ps1) and upload.
- Select the following settings
- Run this script using the logged-on credentials: No
- Enforce script signature check: No
- Run script in 64-bit PowerShell Host: Yes
- Select the appropriate device groups and apply the policy
- Go to Intune > Devices > Configuration profiles > Create new Profile.
- Select Platform: Windows 10 and later > Profile type: Templates > Administrative Templates
- Click on Google > Google Chrome
- Search “Configure the list of force-installed apps and extensions” > Enable > Extension/App ID: echcggldkblhodogklpincgchnpgcdco;https://clients2.google.com/service/update2/crx
- Deploy to User/Device group.
- Note: when policy deployed, can be checked from client end browse “Chrome://policy” on Chrome and go to extensions installed section.
Thank You!