Disable DNS over HTTPS on enterprise browsers

Browsers in your enterprise may enable DNS over HTTPS (DoH) by default. To make sure that your enterprise computers rely on ETP Client for protection and privacy and do not bypass ETP security, you can manually disable this protocol.
Note: Use your enterprise system management solution to deploy these browser settings to computers across your organization.

On Google Chrome

DNS over HTTPS (DoH) is enabled by default on Google Chrome version 83 or later. Complete this procedure to disable DoH.

How to

  1. In the Chrome address bar, enter chrome://flags/#dns-over-https.
  2. Go to the Secure DNS lookups setting.
  3. In the provided menu, select Disabled.
  4. Click Relaunch to relaunch the browser window with this change.

On Mozilla Firefox

DNS over HTTPS (DoH) is enabled by default on Mozilla Firefox. Complete this procedure to disable DoH.

How to

  1. On Mozilla Firefox, click the menu button.
  2. Click Options.
  3. Go to the Network Settings section and click Settings.
  4. Scroll down to the Enable DNS over HTTPS option, and deselect it.
  5. Click OK to save your settings.

On Microsoft Edge

While DNS over HTTPS (DoH) is not enabled by default on Microsoft Edge browsers, you can perform this procedure in case it’s enabled.

How to

  1. In the Microsoft Edge address bar, enter edge://flags#dns-over-https.
  2. Go to the Secure DNS Lookup setting.
  3. In the provided menu, select Disabled.
  4. Click Restart to restart the browser with this change.