SUPPORT
ARTICLES
CONTACT US
SIGN IN
What's Secure Lockdown? Who's it for?
Compare products
Compare SL editions
SL - Multi-app Edition
SL - Standard Edition
SL - Browser Edition
SL - Internet Explorer Edition
SL PlayBox™ - Browser Edition
Remote Management Services

Natively Whitelist Websites in Google Chrome or Microsoft Edge

How to take advantage of the Windows Registry Editor on Windows 10 and 11 to allow only desired websites using Google Chrome or Microsoft Edge


The term whitelisting with respect to Internet browsing is the act of preventing access to all websites except those desired. Whitelisting websites is ideal for:

Business systems such as browser-based time-clocks, point-of-sale devices, and custom web applications
Interactive kiosks for informational presentations or entry forms
 Digital signage
 Hotel business centers
 Business wanting to prevent employees from visiting non-work related websites
 Parents or schools wanting to limit children’s Internet access

From company-wide options to local individual browser methods, there are several techniques available for whitelisting. On an enterprise level, firewall products have whitelisting features but may be too expensive and complicated for many cases. For businesses with Windows Pro or Enterprise, the Windows Group Policy Objects Editor (GPO) can be used to whitelist using Chrome or Edge Policy Templates (adm, admx files). However, the GPO method does not work on Windows Home and is complicated to deploy. On an individual browser level, apps can be obtained from the Chrome Webstore and Edge Add-ons store that perform whitelisting functions. However, it’s easy for the user to circumvent those apps by disabling them in the browser settings.

There is a simple, more robust way to whitelist websites using an existing native Windows tool. This article describes how to take advantage of the Windows Registry Editor to allow only desired websites. This hidden feature, supported by both the Google Chrome and Microsoft Edge browsers, provides the ability to blacklist and whitelist websites. In addition, the feature is set by a Windows administrator and cannot be changed by a Standard Windows user. This method of whitelisting works on Windows 10 and 11 including Windows Home, Pro, and Enterprise. Later, the article introduces you to how to whitelist websites, fully lock down the browser, and secure Windows as well using Secure Lockdown - Browser Edition. The utility enables an end-to-end, secure, special purpose system.

The following steps explain how to whitelist websites using the Windows Registry Editor. Be sure you’re logged in as a Windows Local Administrator. This account will later be converted to a Windows Standard User account that the browser user(s) will access. It is important to set up a second Windows Administrator account on the device so that the following changes can be modified later. Also, the changes in the following steps are only applicable to the current user. Other local Windows accounts will not be affected by these changes.
Step 1: Set the home page. When the browser is opened, it should start with the main website you want whitelisted. If this step is skipped, the browser will open with an error.
EDGE:

1. Select the browser menu ellipse button (...), then choose Settings > Start, home, and new tabs > When Edge starts > Open these pages > Add a new page.

2. Enter the URL that will be your home page when the browser is opened. This will be one of the whitelisted pages. Be sure to add the protocol to the URL. For example: “https://inteset.com”.

CHROME:

1. Select the browser menu ellipse button (...), then choose Settings > On startup > Open a specific page or set of pages > Add a new page

2. Enter the URL that will be your home page when the browser is opened. This will be one of the whitelisted pages. Be sure to add the protocol to the URL. For example: “https://inteset.com”.

Step 2: Blacklist all websites. In order to whitelist some websites, the first step is to block all websites.
EDGE/CHROME:

1. Open the the Windows Registry editor. Press the Windows Key + R to open the Windows Run dialog. Then type “regedit” and press Enter. The Windows Registry Editor will open as shown below.

2. Navigate to the following registry key name path: “HKEY_CURRENT_USER\Software\Policies\”

EDGE:

1. Within the Policies key, create a new key name by right-clicking on the Policies key name and selecting New > Key, then enter the value “Microsoft” as shown below.

2. Create another new key name under Microsoft called “Edge” as shown below.

3. Create another new key name under Edge called “URLBlocklist” as shown below.

4. Under the URLBlocklist key, right-click on the name and select New > String Value, then enter the name “1” and press OK.

5. Double-click on the name “1”, and enter an asterisk (*) to block all websites.

If you now open the Edge browser, you’ll notice that you will no longer be able to access any websites.

Notice also that the browser is “Managed by your organization” as shown at the bottom of the browser’s menu.

Note: Managing features of Edge, is accomplished by specifying the “edge://” schema plus the function in the address bar. For example, “edge://settings”, “edge://history”, or “edge://favorites”. These URLs will also be blocked.

CHROME:

1. Within the Policies key, create a new key name by right-clicking on the Policies key name and selecting New > Key, then enter the value “Google” as shown below.

2. Create another new key name under Google called “Chrome” as shown below.

3. Create another new key name under Chrome called “URLBlocklist” as shown below.

4. Under the URLBlocklist key, right-click on the name and select New > String Value, then enter the name “1” and press OK.

5. Double-click on the name “1”, and enter an asterisk (*) to block all websites.

If you now open the Chrome browser, you’ll notice that you will no longer be able to access any websites.

Notice also that the browser is “Managed by your organization” as shown at the bottom of the browser’s menu.

Note: Managing features of Chrome, is accomplished by specifying the “chrome://” schema plus the function in the address bar. For example, “chrome://settings”, “chrome://history”, or “chrome://bookmarks”. These URLs will also be blocked.

Step 3: Whitelist any website. Now that all websites are blocked, it’s time to unblock only those sites you wish to be available.
EDGE:

1. Open the the Windows Registry editor. Press the Windows Key + R to open the Windows Run dialog. Then type “regedit” and press Enter. The Windows Registry Editor will open as shown below.

2. Navigate to the following registry key name path: “HKEY_CURRENT_USER\Software\Policies\Microsoft\Edge\”

3. Create a new key name under Edge called “URLAllowlist” as shown below.

4. Under the URLAllowlist key, right-click on the name and select New > String Value, then enter the name “1” and press OK.

5. Double-click on the name “1”, and enter a website you wish to allow as shown below. For example, “inteset.com”.

6. Repeat step 5 above for every new website you wish to allow changing the String Value name to the next consecutive number as shown below.

The settings will take effect the next time the browser is started.

To learn more about URL filter patterns for whitelisting Edge websites, click here.

7. To remove the whitelisting feature, delete the entire Microsoft policy by right-clicking on the key name, then select Delete as shown below.

CHROME:

1. Open the the Windows Registry editor. Press the Windows Key + R to open the Windows Run dialog. Then type “regedit” and press Enter. The Windows Registry Editor will open as shown below.

2. Navigate to the following registry key name path: “HKEY_CURRENT_USER\Software\Policies\Google\Chrome\”

3. Create a new key name under Chrome called “URLAllowlist” as shown below.

4. Under the URLAllowlist key, right-click on the name and select New > String Value, then enter the name “1” and press OK.

5. Double-click on the name “1”, and enter a website you wish to allow as shown below. For example, “inteset.com”

6. Repeat step 5 above for every new website you wish to allow changing the String Value name to the next consecutive number as shown below.

The settings will take effect the next time the browser is started.

To learn more about URL filter patterns for whitelisting Chrome websites, click here.

7. To remove the whitelisting feature, delete the entire Google policy by right-clicking on the key name, then select Delete as shown below.

Step 4: Change the current Windows administrator user to a Windows Standard User. As previously mentioned, it is suggested that the administrator account be changed to a Standard User account. This way, the user of the account will not be able to change the whitelisting settings. To do this, follow the steps below:

1. Add a new Windows administrator account (instructions found here).

2. Change the current Windows administrator account to a Standard User account (instructions found here).

Use Inteset Secure Lockdown to Lock Down the Entire System

The above article explains how to limit available websites in the Edge and Chrome browsers. If you’re looking to lock down other features of the browser and lock down Windows too, try Inteset’s Secure Lockdown - Browser Edition, or Secure Lockdown - Multi application Edition. These inexpensive utilities extend the whitelisting capability to create a fully secure special purpose system and are used by tens of thousands of organizations around the world.
Learn more about Inteset Secure Lockdown...

Our company

About us Contact us Support Connect with us

Shop products

Compare Secure Lockdown editions Secure Lockdown - Multi-app Ed. Secure Lockdown - Standard Ed. Secure Lockdown - Browser Ed. Secure Lockdown - IE Ed. SL PlayBox™ - Browser Ed. Remote Management Services Looking for universal remote products?

Corporate Headquarters:
51 Mill St
Building E, Suite 21A
Hanover, MA 02339, USA

Phone:
1-781-826-1560

Site map | Privacy policy | Terms of use | EULA

© 2023 Inteset Systems, LLC. All rights reserved.

Inteset Systems, LLC and its software is in no way affiliated, connected, or otherwise associated with Google