So, you surfed into your work SharePoint to check something with your private browser on your private Mac, and now the bottom of the menu says:

“Managed by your organization”

Well… It’s likely NOT YOUR organization… It’s your boss’s organization, and only Zeus knows what he’s doing with your browser… time to disconnect.

There are several different ways this hook can be sunk into your a**, but in my case, I found the culprit in chrome://policy/ where there was a LocalNetworkAccessAllowedForUrls with the following value:

[
  "https://EVILCORP-my.sharepoint.com",
  "https://EVILCORP.sharepoint.com"
]

“Replace” EVILCORP with your own special EVILCORP.

Those guys don’t really belong there, do they? So let’s get rid of them. This is how you do it on a Mac.

Start by verifying that this is indeed what’s happened in your case. Open a terminal and write the following (for details, see the manual for the defaults command… YES, REALLY, you shouldn’t just paste stuff from the internet into a terminal window without verifying what it does first… Check the manual! I can wait…😆):

defaults read com.google.Chrome LocalNetworkAccessAllowedForUrls

The reply should be:

(
    "https://EVILCORP-my.sharepoint.com",
    "https://EVILCORP.sharepoint.com"
)

Found em! You can’t run! You can’t hide! EVILCORP.

So, let’s get medieval on their a**es.

Very important! You must, MUST verify that the “LocalNetworkAccessAllowedForUrls” is at the end of this command, or you’ll reset your whole browser back to factory settings! Don’t reset your browser accidentally!

defaults delete com.google.Chrome LocalNetworkAccessAllowedForUrls

Now verify you did indeed send them EVILCORPERS packing.:

defaults read com.google.Chrome LocalNetworkAccessAllowedForUrls

The reply should be along the line:

The domain/default pair of (com.google.Chrome, LocalNetworkAccessAllowedForUrls) does not exist

Now all you have to do is restart Chrome.

The “Managed by your organization” should disappear from the menu, and chrome://policy/ should no longer contain the LocalNetworkAccessAllowedForUrls policy.

Well, you may also want to install a site-blocking plugin to deny access to EVILCORP.

Though, since it’s effing around behind SharePoint, you’ll probably have to block everything that contains EVILCORP to not even get the login prompt. I suspect this crap comes back as soon as you log in, regardless of whether your EVILCORP.sharepoint.com is blocked or not.

Another tip is that if you have to access your work network from your private computer in the future, you might want to use another browser for that. So your private one can block your boss’s a##.

Well, at least, now you know how to get rid of the crap without having to fry your whole browser. Just remember to add that LocalNetworkAccessAllowedForUrls behind the delete, or you’ll do just that.