Default legacy SameSite cookie behavior setting

Allows you to revert all cookies to legacy SameSite behavior. Reverting to legacy behavior causes cookies that don't specify a SameSite attribute to be treated as if they were "SameSite=None", and removes the requirement for "SameSite=None" cookies to carry the "Secure" attribute. See https://www.chromium.org/administrators/policy-list-3/cookie-legacy-samesite-policies for full description.

When this policy is not set, the default SameSite behavior for cookies that don't specify a SameSite attribute will depend on the user's personal configuration for the SameSite-by-default feature, which may be set by a field trial or by enabling or disabling the flag same-site-by-default-cookies flag.

Supported on: At least Microsoft Windows 7 or Windows Server 2008 family

Default legacy SameSite cookie behavior setting


  1. Revert to legacy SameSite behavior for cookies on all sites
    Registry HiveHKEY_LOCAL_MACHINE or HKEY_CURRENT_USER
    Registry PathSoftware\Policies\Google\Chrome
    Value NameLegacySameSiteCookieBehaviorEnabled
    Value TypeREG_DWORD
    Value1
  2. Use SameSite-by-default behavior for cookies on all sites
    Registry HiveHKEY_LOCAL_MACHINE or HKEY_CURRENT_USER
    Registry PathSoftware\Policies\Google\Chrome
    Value NameLegacySameSiteCookieBehaviorEnabled
    Value TypeREG_DWORD
    Value2


chrome.admx

Administrative Templates (Computers)

Administrative Templates (Users)