Hi Markus,
I'd love to provide a bit more info :)
- OS's are currently almost all Windows XP and will be for at least a
year or two I'd say
- Windows Domain
- ADM files do work but we'd have to have another another group push
them out for us
- Pushing updates quickly is more like in the case of simply
restarting the app they will get the new policy settings
So, in an ideal situation, if we could have the Windows install
directory out somewhere on a locked-down network drive with a
preferences file that locks down our policy and not just our default
settings, essentially like the Linux model, it would make releasing
Chrome internally much more feasible and easier to support without
getting other groups involved. I see the code in Chromium already
compiles out the Linux code based on environment, but I don't see why
both can't co-exist having the ADM policy possibly be a higher
priority than the locked down preferences file or vice-versa.
The only reason I ask is that I work for a rather large company and
its very hard for users to actually get things released so having
certain features available by default would make it much easier to
convince the other groups involved to get it released. I think for
now what I might do is have all the registry keys copied over with the
binary through some script on startup to ensure we always have the
group policy set. But again, if Chrome were to read and honour that
policy file on startup it would be more secure and less chances for
users to get around that policy without somehow hacking the binary
file.
Regards,
Hesham