I used to be able to disable windows integrated authentication by updating the settings in IE. Recently this no longer works. Has something changed in recent versions of chrome? Is there a new way to turn this off?
Chrome version 46.0.2490.71
I used to use this setting in IE
Internet Options -> Advanced -> uncheck 'Enable Windows Integrated Authentication'
I got this response from an internal admin and it seems to work.
I think the best we came up with was to create a shortcut to
chrome.exe on your desktop and modify the target of the shortcut to be
something like:
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --auth-server-whitelist="_"
Edit: Corrected the path for misplaced backslashes. Note also the (x86), just in case.
Expanding on Daniel Trimble's answer, which worked for me:
I would like to help more people find this useful answer by adding a little more context. What is Integrated Windows Authentication, and why would you want to disable it?
Basically, Integrated Windows Authentication allows a browser such as Chrome to access credentials that are stored on your computer (for example, the password you use to log into your office computer) and use those same credentials to log you into a website (for example, a password-protected portion of your company's website). This occurs behind the scenes, without a visible password prompt.
The problem is that you may not want to be automatically logged into a particular website.
Example: I like to use Chrome as a test browser to see the "public" view of my company's website. Generally I log into our site in Firefox or IE, make changes there, and then view the site in Chrome to make sure my changes were "published" as intended.
Suddenly, one day, I could no longer stay signed out of my company's website in Chrome. Whenever I navigated to a password-protected page, instead of giving me a login prompt, Chrome would automatically sign me in to Microsoft SharePoint (my company's content-management system) and show me the "logged in" version of that page.
If something similar is happening to you, there are other, more obvious things you should try first. Start by clearing your saved passwords (Chrome menu button > Settings > Show advanced settings > Passwords and forms > Manage passwords).
Clearing my saved passwords didn't work for me, so I tried other things: cleared the cache, removed all cookies, reset Chrome's settings, uninstalled and reinstalled Chrome. I even visited a password-protected page in an Incognito window, but Chrome still signed me in automatically.
Finally I found this Stack Overflow page, which solved the problem. (Thank you, Daniel Trimble!) Integrated Windows Authentication was the culprit. IWA used to be turned off by default in Chrome; you had to enable it via a checkbox in your Internet Options (shared with IE). At some point in the recent past, Google apparently decided to enable IWA by default. The unfortunate part is that they did not provide an option under Chrome's Settings panel to disable it. At least there's this workaround!
How to disable Integrated Windows Authentication (IWA) for Chrome via Windows' Control Panel:
(This applies to both Internet Explorer and Chrome since Chrome uses system settings that are managed using Internet Explorer.)
Press Windows' Start button, type "Internet Options" to search, and click the one result, from the control panel
Go to the "Security" tab
Select "Local Intranet" and click on "Custom Level" button
Scroll to the "User Authentication" section at the bottom of the list and select "Prompt for user name and password"
Click Ok, Apply, and Ok to save changes
Close all instances of the IE browser to make the changes effective. Launch the browser again and access the application. A basic authentication challenge will be served.
Source: https://sso.cisco.com/autho/msgs/disable_IWA.htm
I found out we had a windows policy that set the following registry key:
HKEY_CURRENT_USER\Software\Policies\Google\Chrome\AuthServerWhitelist
Deleting this key made Chrome prompt for a username and password for me.
More information about the registry keys.
Great and all the above answers work perfect.!
To add more -- I found that google chrome (version 68.0.3440.106) has the GUI option for Windows integrated authentication, just like in IE, this worked for me :)
goto chrome://settings/
Show advanced settings...
In the "Network" section, click on "Change proxy settings..."
Chrome opens the internet properties window
in the security tab
Select Local Intranet and Click on "Custom Level" button
Scroll to bottom of the window to User Authentication section, select "Prompt for user name and password"
Click Ok, Apply and Ok to save changes.
close existing session and start a new chrome session.
I haven't found anything looking like a good answer to my problem, so I'll articulate my own question:
On a Terminal-/Remote Desktop Server (2012 R2), we have a problem running Chrome where there are multiple sessions for the same user. (e.g. a shared "Front Desk" AD user where 2 or 3 people at work may be logged into 4 or 5 RDP sessions with the same user account)
The first launch of Chrome works fine for whichever session opens it. None of the other sessions can use Chrome, however, at least not until the initially launched program instance is closed.
I found an explanation followed by a very unsexy suggestion in the Chromium forums (https://code.google.com/p/chromium/issues/detail?id=160676), so I'm trying to ask here instead in hope that there is a better and more intuitive solution to the problem.
Thank you!
I've solved by, for each concurrent session needed:
In chrome click on Manage people, then Add person, checking Create a desktop shortcut for this user.
Chrome will create a desktop shortcut with the Target property such as:
"C:\......\chrome.exe" --profile-directory="Profile 1"
Edit the Target property of the created desktop shortcut and add a unique folder value for the --user-data parameter:
"C:\......\chrome.exe" --profile-directory="Profile 1" --user-data-dir="C:\temp\user1"
I don't see your log or any other trace clue.
One of my guess chrome's user data directory was locked by the chrome opened.
You might try open the chrome from cmd with this command:
chrome.exe --user-data-dir="C:\temp\user1"
It is starting chrome with a new user data directory.
Workaround details for this issue are here:
https://code.google.com/p/chromium/issues/detail?id=160676
You may want to uncheck the option that lets Chrome run in the background even if "closed"
Click on the Chrome menu (or press Alt+E) Select Settings Click on the link titled ‘Show advanced settings‘ Under the section headed ‘System‘ untick the box next to “Continue running background apps when Google Chrome is closed”
The problem is not that my console.log is not printed in the console. The problem is that the console is initially blank. I need to switch the tabs back and forth to get it working. Steps to reproduce:
1. Open Google chrome
2. Open some page
3. Open the console with Ctrl+Shift+I or F12
I even reinstall the browser (I kept the settings, because I can't afford to delete everything). Of course I removed all the extensions and disabled all the plugins. Still the same thing. Is there any application cache which I could delete to fix the problem.
Here is a screenshot:
P.S.
The error which you see is actually from the current page. It is not from the console. Here is what I see when open dev tools inside dev tools:
Uncaught TypeError: Cannot call method 'statusBarResized' of undefined inspector.js:2181
And all this happen after the latest big update of the browser.
Your preferences have probably become corrupted. If you can reproduce the bug, please open a ticket at http://crbug.com/new.
Reset the preferences to resolve the issue. These are saved in localStorage on chrome-devtools://devtools, so you need to open the devtools of the devtools (step 1-2 of https://stackoverflow.com/a/21149275/938089), and either:
Run localStorage.clear() (switch to the Console tab or press Esc to open a drawer)
OR Go to Resources, Local Storage and delete all items of the dev tools one by one.
The suggestion of clearing localStorage either didn't work or only worked temporarily for me. As mentioned in some of the comments, the solution that worked for me was to:
Open developer tools
Open settings pane from top right (or F1)
Click the 'Restore defaults and reload' button
I should also mention that I'm using Google Chrome 53.0.2754.0 canary (64-bit).
I created a Chrome extension and am using localStorage for storing data.
I am accessing localStorage through "background_page".
It works fine but how can I manually view its values? In Firefox you can use Firebug.
Anyone have any suggestions?
It's simple. Just go to the developer tools by pressing F12, then go to the Application tab. In the Storage section expand Local Storage. After that, you'll see all your browser's local storage there.
Open the Developer Tools by pressing F12.
Click on the Application tab and you will see localStorage's content. From there you can add/edit/delete the entries manually.
On OS X the keys are: ⌥ + ⌘ + i
Another combination: Ctrl + Shift + i
In Chrome it looks like this:
You can go to chrome://chrome/extensions and there will be a link to your background page that once you launch you can use the Dev Tools to see the localStorage stuff.
I am using chrome Version 52.0.2743.82 m currently. In this lastest version of chrome as of now, you can see the local storage values by launching "Developer Tools" and then looking into "Application" tab.
Either I don't understand what people here are trying to do, and it's not what I'm doing, and/or the Chrome developer tools have changed, and are broken in this regard.
My extension's content-script stores data like this:
chrome.storage.local.set(packet);
When I view the Application tab of the extension's background page, and expand Storage > Local Storage, I see my extension listed, but clicking on it shows no data.
The only solution I've found is to run this in the background page's console:
chrome.storage.local.get(null, function(data) {console.log(data);})
That's similar to how the extension reads it (except passing null to get all keys instead of a key name to get just the one I want) and it works fine, it's just awkward to type it out every time. It's also weird that there are all these answers here that don't work for me.
I'm using Chrome 73.0.3683.103 (Official Build) (64-bit) on Windows 10. The extension is still unpacked, if that's relevant, but that's the most likely time you'd want to do this, i.e., in development.
I'm working on a site that uses basic authentication. Using Chrome I've logged in using the basic auth. I now want to remove the basic authentication details from the browser and try a different login.
How do you clear the current basic authentication details when using Chrome?
It seems chrome will always show you the login prompt if you include a username in the url e.g.
http://me#example.com
This is not a real full solution, see Mike's comment below.
You can open an incognito window Ctrl+Shift+n each time you are doing a test. The incognito window will not remember the username and password the last time you entered.
To use this trick, make sure to close all incognito windows. All incognito windows share the same cache. In other words, you cannot open multiple independent incognito windows. If you login in one of them and open another one, those two are related and you will see that the new window remembers the authentication information from the first window.
all you need to do is to type chrome://restart in the address bar and chrome, with all its apps that are running in background, will restart and the Auth password cache will be cleaned.
The authentication is cleared when you exit Chrome.
Note however, that by default Chrome is running apps in the background, so it may not really exit even if you close all Chrome windows. You can either change this behavior under advanced setting, or e.g. under Windows, you can completely exit Chrome by using the Chrome icon in the systray. There should be an icon if Chrome is still running, but maybe you'll find it only in the popup with the hidden icons. The context menu of the Chrome icon has an entry to completely exit Chrome, and you can also change the setting for running apps in the background using that menu.
Open the Chrome menu
Select Settings
Scroll to the bottom
Click Show advanced settings...
Scroll to the bottom
Under System uncheck the box labeled: Continue running background apps when Google Chrome is closed
function logout(url){
var str = url.replace("http://", "http://" + new Date().getTime() + "#");
var xmlhttp;
if (window.XMLHttpRequest) xmlhttp=new XMLHttpRequest();
else xmlhttp=new ActiveXObject("Microsoft.XMLHTTP");
xmlhttp.onreadystatechange=function()
{
if (xmlhttp.readyState==4) location.reload();
}
xmlhttp.open("GET",str,true);
xmlhttp.setRequestHeader("Authorization","Basic YXNkc2E6")
xmlhttp.send();
return false;
}
Right click on your Bookmark Bar -> Add Page...
Set the name as Logout Basic Auth
Set the URL as:
javascript: (function() {
var xmlhttp = new XMLHttpRequest();
xmlhttp.onreadystatechange = function() {
if (xmlhttp.readyState == 4) {
location.reload()
}
};
xmlhttp.open("GET", location.origin, true);
xmlhttp.setRequestHeader("Authorization", "Basic aW52YWxpZDoK");
xmlhttp.send();
return false;
})()
On any webpage you need to logout of Basic Auth, click the bookmark.
This isn't exactly what the question is asking for but in case you accidentally saved basic auth credentials and want to clear them or update them:
https://support.google.com/accounts/answer/6197437
Open Chrome.
At the top right, click More > and then Settings.
At the bottom, click Advanced.
Under "Passwords and forms," click Manage passwords.
Under "Saved Passwords", click Remove on the site you want to clear saved basic auth credentials.
Steps 1-4 can be quickly navigated with this link: chrome://settings/passwords
This worked in Chrome Version 59.0.3071.115
There is no way to do this in Chrome as yet (Chrome 58)
I have found the best solution is to open the url in an Incognito window, which will force you to re-enter the basic authentication credentials.
When you want to change the credentials, close the Incognito window and launch another Incognito window.
Just do
https://newUsername:newPassword#example.com
...to override your old credentials.
I am using Chrome Version 83 and this is how I did it. Before following the steps make sure the tab of the site, whose Auth Details you want to delete is closed.
First, go to Settings >> Privacy and security.
Then click on Site settings option
Then click on View permissions and data stored across sites option
Search for the site whose Auth info you want to delete. In this example, I am using Stack Overflow.
Now click on the site and then click the Clear data button.
Now restart your browser and you will be asked for a fresh login. For restarting you can type chrome://restart in the address bar.
This is a quick trick.
For example you already input basic auth to url https://example.com by user1:password1. To clear it just open new tab then:
Goto: https://any:any#example.com then your password will be removed.
any:any is any string.
As mentioned by #SalCelli, chrome://restart works. However, this relaunches all the tabs.
Another method is to launch in incognito mode as suggested by CEGRD
However, if you could not like to restart & use incognito, on Chrome 86 (Mac), I found that the answer provided by #opsb & Mike only works with the below additional steps.
Enter the wrong username in the url without the resources
eg: if the url is http://mywebsite.com/resources/, it will not work if I enter http://wrong#mywebsite.com/resources/, but will work if I enter only http://wrong#mywebsite.com/
it clears the Basic Auth credentials
prompt for the credentials again
However, entering the valid credentials will not work, as in the background, chrome still send the wrong user as part of the url, even though the url appears right in the address bar When prompted for credentials you would need to Cancel, and click the address bar and reload the page from pressing enter. Now enter the correct password
May be old thread but thought of adding answer to help others.
I had the same issue with Advanced ReST Client App, I'm not able to clear basic authentication from Chrome neither from app. It simply stopped asking for credentials!
However, I managed to make it work by relaunching Chrome using About Google Chrome -> Relaunch.
Once Chrome is relaunched, when I accessed ReST service, it will ask for user name and password using basic authentication popup.
Hope this helps!
A lot of great suggestions here, I'll give the one that I found the most efficient:
Just change your password in the site. The old authentication will became outdated and Chrome will request it again.
Since I had a terminal open, I did a simple script to change the password and in two keypresses it were incremented.
Press the key combination Ctrl+Shift+Delete
You will see popup in chrome
Check the above options and click clear data and you are done.
I'm using Chrome 75. What I've found is that restarting Chrome doesn't work. But restarting Chrome AND opening the developer tools does work. I don't have any explanation why this should be.
In Chrome, on the right-hand side of the URL bar when you are at a password protected URL, you should see a small key symbol. Click the symbol and it will take you directly to the Password Management area where you can remove the entry. That will ensure you receive future prompts or have an opportunity to enter a new password and save it.
If you do not see the key symbol, that same Password Management area can be accessed by going to Chrome -> Settings -> Passwords and forms -> Manage Passwords. Or more simply, this URL – chrome://settings/passwords.
For Chrome 66 I found the relevant option under:
Top right ... menu -> More Tools -> Clear Browsing Data
Click the "Advanced" tab
Check the "Passwords" box (and uncheck others you don't want cleared)
Click "Clear Data"
Using a new Incognito window is probably easier, but for those times you forget and want to clear the saved password, this does the trick without having to restart Chrome (which also works)
For Windows 10: What worked for me was clearing the credentials in the Windows Credentials in the Credential Manager.
I was using LastPass password manager, deleting credentials in LastPass solved the issue.
Weirdest thing, but in my case, I was trying to access a page with basic auth and Chrome was sending invalid credentials without even prompting for it. After I logged out from my LastPass plugin, everything was back to normal. So I think LastPass is starting to support Basic Auth but it's not giving the option of what password to use, it looks like it's just sending a random password for a domain that matches (which is very problematic in my case).
Thought it might help someone.
In my case (Win Chrome v100) it worked when using https://#domain.com to delete the credentials. Verify in the dev tools and querying document.URL.
Chrome uses the same Internet Options as IE.
Try opening your Internet Options and removing the URL from "Trusted Sites." This should regenerate a 401 call for credentials when you restart the browser and visit the URL again.
You may need to remove it from "Intranet Sites" as well.
Things changed a lot since the answer was posted.
Now you will see a small key symbol on the right hand side of the URL bar.
Click the symbol and it will take you directly to the saved password dialog where you can remove the password.
Successfully tested in Chrome 49
You can also do it via the settings page, chrome://chrome/settings
Under The Hood
Advanced Settings
Passwords and Forms
Then click the link Manage saved passwords.
You should be able to clear your credentials from your browser via "Clear Browsing Data..." in chrome://settings/advanced