How To Allow Pop Ups On Mac

I’m trying to enable pop ups on my Mac for a few trusted websites, but the browser keeps blocking them even after I change some settings. I need these pop ups for work tools like online banking and scheduling, and it’s getting in the way of my workflow. Can someone walk me through how to properly allow pop ups on Mac, ideally in Safari and Chrome, without opening things up to unsafe sites?

This trips a lot of people up on Mac because there are two layers. macOS and the browser. Here is how to sort it out, step by step.

1. Check which browser you use
   The steps are different for Safari, Chrome, and Firefox. Do the ones for your browser.

Safari on macOS

1. Open Safari.
2. Go to the site you want to allow pop ups for. Leave the tab open.
3. In the top menu, click Safari, then Settings.
4. Go to the Websites tab.
5. On the left, click Pop-up Windows.
6. Under “Currently Open Websites” find your site.
7. On the right of that row, change the dropdown from “Block and Notify” or “Block” to “Allow”.
8. At the bottom, you also see “When visiting other websites”. Set that to “Block and Notify” if you only want trusted sites to pop.
   If you set it to “Allow”, Safari will allow popups on every site. Usually not great.

If it still blocks stuff in Safari

1. Check if you have an ad blocker or content blocker.
   In Safari settings, go to Extensions. Disable them and test again.
2. Some banking tools open as new windows that look like blocked popups. Hold Option while clicking the link, or right click and choose “Open Link in New Window” as a workaround.

Google Chrome on macOS

1. Open Chrome.
2. Go to the website you want to allow.
3. Click the lock icon next to the address bar.
4. Click “Site settings”.
5. Scroll down to “Pop-ups and redirects”.
6. Change it to “Allow”.
7. Reload the page.

Global Chrome popup setting

1. In Chrome, type this in the address bar and hit Enter:
   chrome://settings/content/popups
2. Set “Default behavior” to “Don’t allow sites to send pop-ups or use redirects”.
3. Under “Allowed to send pop-ups and use redirects”, click “Add”.
4. Enter the domain, for example:
   https://yourbank.com
   or
   [*.]yourbank.com if it uses subdomains.
5. Click Add.

If Chrome still blocks popups

1. Check extensions.
   Click the puzzle icon, then “Manage extensions”.
   Disable ad blockers or “privacy” tools and test again.
2. Some security tools inside companies push Chrome policies.
   If work IT controls your browser, “Pop-ups and redirects” might say “Managed by your organization”. In that case, you need them to whitelist your sites.

Firefox on macOS

1. Open Firefox.
2. Go to the site you need.
3. Click the menu button (three lines) at top right.
4. Click Settings.
5. Go to the Privacy & Security panel.
6. Scroll down to “Permissions”.
7. Find “Block pop-up windows”.
8. Keep it checked. Click the “Exceptions…” button.
9. Type the site address. Click “Allow”, then OK.

If Firefox still blocks

1. Check if an extension is blocking.
   Menu, Add-ons and themes, Extensions. Disable blockers and try again.
2. If a bar appears at the top saying a popup was blocked, click “Options” on that bar and choose “Allow pop-ups for this site”.

Extra mac level thing
macOS itself does not have a general popup blocker for browsers, but security software from work might. If you run something like CrowdStrike, Cisco, Zscaler, or a corporate profile in System Settings, that profile might force browser rules.
You can check:

1. System Settings.
2. Profiles.
3. If you see work profiles, they might control Safari or Chrome policies. Only IT can change those.

Quick test to see if your settings work

1. Go to https://www.popuptest.com in your browser.
2. Use one of the simple tests.
3. If the site works there but not on your bank or scheduler, the issue is often with that site’s own scripts or with your corporate security stack.

Common gotchas
• Some “popups” are not real browser popups. They are in-page modals. Those usually do not get blocked by popup settings. If they fail to load, it is often ad blockers or content security.
• VPN or security agents from work sometimes strip scripts from pages. If it works at home on your personal Mac, but not on the work one, that is a clue.
• Try one more browser. If it works in Firefox but not in Chrome, your Chrome profile or extensions are the problem.

Fast checklist for your case
Since you need it for banking and scheduling tools for work, I would do:

1. Use Chrome or Safari.
2. Add those work sites to the allowed popup list as above.
3. Temporarily disable ad blockers.
4. If you see “Managed by your organization” or a config profile, ping IT and ask them to whitelist those specific domains.

If you share the exact browser and a sample URL format, people here can suggest exact wording for the allow rules, like which subdomains to add.

Couple of extra angles you can check that @nachtschatten didn’t fully dive into, esp. if you’ve already flipped the popup switch and stuff’s still not working:

1. Confirm it’s actually a “popup”

A lot of banking / scheduling tools use:

• New tabs or windows opened by JavaScript
• In-page modals (overlays)

Those modals are not blocked by popup settings. If you click something and literally nothing happens, that’s often:

• A script blocked by a content blocker
• A script blocked by company security
• A browser privacy setting killing 3rd‑party scripts or cookies

Quick test: open the site, then:

• Open Developer Tools (in most browsers: Option + Command + I)
• Click the button that should open the popup
• Watch the Console tab for red errors

If you see stuff like “blocked by client” or “failed to load resource,” that’s not the popup blocker, that’s security / extensions.

2. Check “private” / “strict” modes

Some settings override popup rules quietly:

Safari

• If you’re in a Private Window, try the same site in a normal window.
• In Settings → Privacy, if “Prevent cross-site tracking” is on, some banks that use external auth windows break in weird ways. You can try toggling it off temporarily while testing.

Firefox

• If you turned on Strict tracking protection, that can kill the script that opens the popup, even if popups are “allowed.”
• Try changing to Standard in Settings → Privacy & Security → Enhanced Tracking Protection, reload, then test.

I actually disagree a bit with always leaving the popup setting on “Block and notify” globally. For some locked-down work setups it’s easier to:

• Temporarily switch to “Allow”
• Get your banking / scheduling tool working
• Then go back to “Block and notify” once you’ve confirmed which domains you really need

Yes, it’s messier for a bit, but it tells you fast if the real culprit is popups or something else.

3. Corporate / security stack gotchas

Even if your Mac is “yours,” your network might not be.

Stuff that can silently interfere:

• VPN from work
• Zscaler / Cisco / Cloudflare-type filtering
• Local agents like CrowdStrike, etc.

Symptoms:

• Site works fine on your home Wi‑Fi on personal Mac
• Same browser, same settings on work Mac or work VPN fails
• No popup notification bar at all, it just…does nothing

Easiest test:
Use your phone on mobile data, log into the same banking / scheduling tool, and see if the popup version works. If it does, and your Mac still fails after whitelisting popups, this is very likely a corporate or network filter issue, not a simple browser toggle.

At that point you really have 2 choices:

1. Call IT and ask them to whitelist the exact domains (include subdomains).
2. Use a different machine / network for that particular tool.

4. Extension conflict hunt (fast version)

Instead of disabling everything one by one, do this:

Chrome / Edge

1. Open an Incognito window.
2. In Extensions, make sure all the ad blockers are allowed in Incognito = OFF.
3. Visit the banking/scheduling site in Incognito and try again.

If it magically works in Incognito, one of your normal-profile extensions is breaking the popup or its script. Then yeah, go back and toggle them off one at a time.

Safari

Safari’s a bit more annoying, but you can:

• Settings → Extensions
• Turn everything off
• Test the site
• Then re-enable only what you really need

5. Weird URL / redirect tricks

Some banking sites open popups from a redirected page instead of the main domain.

Example:

• You’re on https://mybank.com
• Click “Statements”
• That page runs a script that tries to open https://secure.portal.bankvendor.com in a new window

If you only whitelisted mybank.com, your browser might still swat the vendor domain.

So:

1. Try the action that should open the popup.
2. Watch for any small “popup blocked” icon in the address bar or a bar at the top.
3. When it appears, click it and choose “Always allow popups from…” and note the exact domain it shows.
4. Add that domain explicitly to the allowed list.

For some tools you’ll end up with:

• yourbank.com
• secure.yourbank.com
• vendor.thirdparty.com

All needing explicit allow.

6. If you want something very controlled

If your main worry is not drowning in spammy popups while still letting banking/tools work:

• Keep global popup setting on Block (or Block & Notify)
• For each work tool:
  • Add it to Allowed list
  • Turn off ad‑blockers just for that site (most have a “disable on this site only” option)
• Create a separate browser profile or even separate browser just for “work tools”

I run:

• Personal stuff in Firefox with strict blocking
• Banking / admin / scheduling in Safari with a couple domains whitelisted
• Popups globally blocked, but exceptions set only where I absolutely need them

Sounds overkill, but after an afternoon of config pain, it saves a lot of hair-pulling later.

If you want to post what browser you’re on and a rough format like https://something.bank.com vs https://portal.vendorbank.com, folks can probably guess which extra domains you actually need to allow so you’re not just opening the floodgates.

Quick troubleshooting angle that builds on what @nachtschatten covered but looks at the “Mac-level” and app-level quirks instead of only browser switches.

1. Make sure it’s not the wrong browser profile

On Mac, Chrome, Edge, Firefox and even Safari can be running multiple profiles / containers. Popup rules and content blockers are per profile.

• If work gave you a profile, test the site in:
  • A completely fresh profile
  • Or a different browser entirely
• If the popup suddenly works there, your main profile has a policy, corrupted setting, or extension list that’s fighting you, not macOS itself.

I actually prefer this to flipping popup rules globally. Spinning up a “clean” profile for banking / scheduling keeps the clutter out of your main one.

2. Reset site-specific settings for the broken site

Safari / Chrome / Firefox all have a habit of accumulating half-broken site settings.

Safari

1. Open the problem site.
2. Go to Safari > Settings for This Website.
3. Hit “Remove” or reset anything customized (especially “Content Blockers” and “Pop-up Windows”).
4. Close the tab, reopen the site and set “Pop-up Windows” to “Allow” again.

Chrome / Edge / Firefox

• Click the padlock icon in the address bar on that site.
• Reset / clear site permissions.
• Reload and re-trigger the popup.

Corrupt or stale site permissions are a classic “I swear I allowed this but it still won’t open” cause.

3. Check macOS Focus & notifications

Some “popups” are actually notification-style windows, especially for schedulers and web apps that use system notifications.

On macOS:

1. System Settings > Notifications.
2. Confirm the browser (Safari / Chrome etc.) is allowed to show alerts, not just banners that vanish.
3. If you use Focus (Do Not Disturb, Work mode), see if notifications from that browser are allowed while Focus is on.

Not real HTML popups, but if your workflow depends on those windows, it can feel like popups are “blocked.”

4. Try the opposite of what @nachtschatten suggested: go stricter first

They mentioned temporarily turning popup blocking to “Allow” globally to debug. That works, but I often do the reverse:

1. Set popups to Block / Block and notify globally.
2. Clear all previous exceptions.
3. Visit just your banking / scheduling domain.
4. Trigger the action that should open the window.
5. When the browser shows a popup-block notice or icon, click it and explicitly “Always allow from this site.”

Why I like this:

• You see exactly which domains are asking for popups, in real time.
• You avoid the “opened the floodgates and forgot to close them” problem.

Different route, same end goal: controlled exceptions.

5. Check for Mac security tools outside the browser

If this is a work Mac, there may be:

• System-level filtering (Endpoint security, DLP tools, parental / safety controls).
• Configuration profiles installed under System Settings > Privacy & Security > Profiles.

If there is a profile from your company, or some security tool injected at the OS level, popups or script actions might be blocked regardless of browser settings. In that case:

• Note the exact time and what you clicked.
• Ask IT to check their logs for blocks on that domain at that timestamp.

You cannot fix that via browser settings alone.

6. “How To Allow Pop Ups On Mac” as a repeatable checklist

If you want a routine, minimal-hassle way:

1. Pick one browser as your “popup-tolerant” environment.
2. Create a dedicated profile just for:
   • Banking
   • Scheduling
   • Other business tools that need popups
3. In that profile:
   • Global popups: Block & notify
   • Only add explicit “Allow” rules when the blocked-popup icon appears
   • Keep extensions minimal

That setup is basically the “How To Allow Pop Ups On Mac” template I recommend, because it keeps things contained and predictable.

7. About using a helper tool (“”)

If you’re thinking of using any small helper or manager like “”

Pros

• Centralizes your popup, script, and site rule management in one place.
• Can make “allow for these 3 domains, block everything else” easier to visualize.
• Good when you juggle many banking / vendor / scheduling portals that all use different popup flows.

Cons

• One more layer that can break things if misconfigured.
• Another thing your company’s security stack might dislike.
• If it abstracts too much, you may not learn which underlying browser setting actually fixed the problem.

Compared with just using built‑in browser settings like @nachtschatten described, “”-type tools are nicer for people who manage a lot of sites and want a dashboard, but they are overkill if you only need 2 or 3 trusted work sites to open windows.

If you can share which browser on Mac (Safari vs Chrome vs Firefox vs Edge) and whether this is a managed work machine, it would narrow down whether you’re fighting the browser, macOS, or your company’s security layer.