CIS Microsoft Edge v3.0.0 L2

Audit Details

Name: CIS Microsoft Edge v3.0.0 L2

Updated: 10/28/2024

Authority: CIS

Plugin: Windows

Revision: 1.0

Estimated Item Count: 42

File Details

Filename: CIS_Microsoft_Edge_v3.0.0_L2.audit

Size: 87 kB

MD5: 8476467a329c1989f7a29ac344487f54
SHA256: ada962fd1d777d34ffb0fca1b1094569d004d3f9e3f7cc935609f10150bb2a00

Audit Items

DescriptionCategories
1.3.1 (L2) Ensure 'Allow read access via the File System API on these sites' is set to 'Disabled'

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.3.3 (L2) Ensure 'Control use of JavaScript JIT' is set to 'Enabled: Do not allow any site to run JavaScript JIT'

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.3.4 (L2) Ensure 'Control use of the File System API for reading' is set to 'Enabled: Don't allow any site to request read access to files and directories via the File System API'

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.3.6 (L2) Ensure 'Control use of the Web Bluetooth API' is set to 'Enabled: Do not allow any site to request access to Bluetooth devices via the Web Bluetooth API'

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.3.7 (L2) Ensure 'Control use of the WebHID API' is set to 'Enabled: Do not allow any site to request access to HID devices via the WebHID API'

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.3.10 (L2) Ensure 'Default setting for third-party storage partitioning' is set to 'Enabled: Block third-party storage partitioning from being enabled.'

SYSTEM AND COMMUNICATIONS PROTECTION

1.8.2 (L2) Ensure 'Configure extension management settings' is set to 'Enabled: *'

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.10.3 (L2) Ensure 'Supported authentication schemes' is set to 'Enabled: ntlm, negotiate'

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

1.29 (L2) Ensure 'Allow features to download assets from the Asset Delivery Service' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.30 (L2) Ensure 'Allow file selection dialogs' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.40 (L2) Ensure 'Allow or block audio capture' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.41 (L2) Ensure 'Allow or block video capture' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.42 (L2) Ensure 'Allow or deny screen capture' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.47 (L2) Ensure 'Allow unconfigured sites to be reloaded in Internet Explorer mode' is set to 'Disabled'

SYSTEM AND COMMUNICATIONS PROTECTION

1.49 (L2) Ensure 'Allow users to open files using the ClickOnce protocol' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.50 (L2) Ensure 'Allow users to open files using the DirectInvoke protocol' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.51 (L2) Ensure 'Allow users to proceed from the HTTPS warning page' is set to 'Disabled'

SYSTEM AND COMMUNICATIONS PROTECTION

1.53 (L2) Ensure 'AutoLaunch Protocols Component Enabled' is set to 'Disabled'

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.56 (L2) Ensure 'Block third party cookies' is set to 'Enabled'

SYSTEM AND INFORMATION INTEGRITY

1.58 (L2) Ensure 'Browser sign-in settings' is set to 'Enabled: Disable browser sign-in'

CONFIGURATION MANAGEMENT

1.65 (L2) Ensure 'Configure Online Text To Speech' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.67 (L2) Ensure 'Configure Speech Recognition' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.74 (L2) Ensure 'Control use of the Headless Mode' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.75 (L2) Ensure 'Control use of the Serial API' is set to 'Enable: Do not allow any site to request access to serial ports via the Serial API'

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.76 (L2) Ensure 'Control where security restrictions on insecure origins apply' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.77 (L2) Ensure 'Default sensors setting' is set to 'Enabled: Do not allow any site to access sensors'

CONFIGURATION MANAGEMENT

1.91 (L2) Ensure 'Enable Drop feature in Microsoft Edge' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.94 (L2) Ensure 'Enable guest mode' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.98 (L2) Ensure 'Enable search suggestions' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.103 (L2) Ensure 'Enable Translate' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.108 (L2) Ensure 'Enforce Bing SafeSearch' is set to 'Enabled: Configure moderate search restrictions in Bing'

CONFIGURATION MANAGEMENT

1.109 (L2) Ensure 'Enforce Google SafeSearch' is set to 'Enabled'

CONFIGURATION MANAGEMENT

1.111 (L2) Ensure 'Enhanced Security Mode configuration for Intranet zone sites' is set to 'Disabled'

SYSTEM AND INFORMATION INTEGRITY

1.114 (L2) Ensure 'Let users snip a Math problem and get the solution with a step-by-step explanation in Microsoft Edge' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.115 (L2) Ensure 'Live captions allowed' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.122 (L2) Ensure 'Show an 'Always open' checkbox in external protocol dialog' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.126 (L2) Ensure 'Specify if online OCSP/CRL checks are required for local trust anchors' is set to 'Enabled'

CONFIGURATION MANAGEMENT

1.127 (L2) Ensure 'Spell checking provided by Microsoft Editor' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.131 (L2) Ensure 'Tab Services enabled' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.132 (L2) Ensure 'Text prediction enabled by default' is set to 'Disabled'

CONFIGURATION MANAGEMENT

1.135 (L2) Ensure 'Enable QR Code Generator' is set to 'Disabled'

CONFIGURATION MANAGEMENT

CIS_Microsoft_Edge_v3.0.0_L2.audit from CIS Microsoft Edge Benchmark v3.0.0