| DISA_STIG_Microsoft_Internet_Explorer_9_v1r15.audit from DISA Microsoft Internet Explorer 9 v1r15 STIG | |
| DTBI001 - The IE home page is not set to blank or a trusted site. | CONFIGURATION MANAGEMENT |
| DTBI002 - IE9 - The installed version of IE must be a supported version. | SYSTEM AND INFORMATION INTEGRITY |
| DTBI010 - First Run Customize settings must be enabled as home page. | CONFIGURATION MANAGEMENT |
| DTBI014 - The IE TLS parameter must be set correctly. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI015 - The IE warning about certificate address mismatch must be enforced. | SYSTEM AND INFORMATION INTEGRITY |
| DTBI018 - Check for publishers certificate revocation must be enforced. | IDENTIFICATION AND AUTHENTICATION |
| DTBI022 - The Download signed ActiveX controls property must be disallowed (Internet zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI023 - The Download unsigned ActiveX controls property must be disallowed (Internet zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI024 - The Initialize and script ActiveX controls not marked as safe property must be disallowed (Internet zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI030 - Font downloads must be disallowed (Internet zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI031 - The Java Permissions must be disallowed (Internet zone). | CONFIGURATION MANAGEMENT |
| DTBI032 - Accessing data sources across domains must be disallowed (Internet zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI036 - Functionality to drag and drop or copy and paste files must be disallowed (Internet zone). | CONFIGURATION MANAGEMENT |
| DTBI038 - Launching programs and files in IFRAME must be disallowed (Internet zone). | CONFIGURATION MANAGEMENT |
| DTBI039 - Navigating windows and frames across different domains must be disallowed (Internet zone). | ACCESS CONTROL |
| DTBI042 - Userdata persistence must be disallowed (Internet zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI044 - Clipboard operations via script must be disallowed (Internet zone). | CONFIGURATION MANAGEMENT |
| DTBI046 - Logon options must be configured to prompt (Internet zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI061 - Java Permissions must be configured with High Safety (Intranet zone). | CONFIGURATION MANAGEMENT |
| DTBI091 - The Java Permissions must be set with High Safety (Trusted Sites zone). | CONFIGURATION MANAGEMENT |
| DTBI112 - The Download signed ActiveX controls property must be disallowed (Restricted Site zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI113 - The Download unsigned ActiveX controls property must be disallowed (Restricted Site zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI114 - The Initialize and script ActiveX controls not marked as safe property must be disallowed (Restricted Site zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI115 - ActiveX controls and plug-ins must be disallowed (Restricted Sites zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI116 - ActiveX controls marked safe for scripting must be disallowed (Restricted Sites zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI119 - File downloads must be disallowed (Restricted Site zone). | CONFIGURATION MANAGEMENT |
| DTBI120 - Font downloads must be disallowed (Restricted Site zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI121 - Java Permissions must be disallowed (Restricted Sites zone). | CONFIGURATION MANAGEMENT |
| DTBI122 - Accessing data sources across domains must be disallowed (Restricted Sites zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI123 - The Allow META REFRESH property must be disallowed (Restricted Sites zone). | CONFIGURATION MANAGEMENT |
| DTBI126 - Functionality to drag and drop or copy and paste files must be disallowed (Restricted Sites zone). | CONFIGURATION MANAGEMENT |
| DTBI127 - Installation of desktop items must be disallowed (Restricted Sites zone). | CONFIGURATION MANAGEMENT |
| DTBI128 - Launching programs and files in IFRAME must be disallowed (Restricted Sites zone). | CONFIGURATION MANAGEMENT |
| DTBI129 - Navigating windows and frames across different domains must be disallowed (Restricted Sites zone). | ACCESS CONTROL |
| DTBI132 - Userdata persistence must be disallowed (Restricted Sites zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI133 - Active scripting must be disallowed (Restricted Sites Zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI134 - Clipboard operations via script must be disallowed (Restricted Sites zone). | CONFIGURATION MANAGEMENT |
| DTBI136 - Logon options must be configured and enforced (Restricted Sites zone). | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI300 - Configuring History setting must be set to 40 days - DaysToKeep | CONFIGURATION MANAGEMENT |
| DTBI300 - Configuring History setting must be set to 40 days - History | AUDIT AND ACCOUNTABILITY |
| DTBI305 - Automatic configuration of Internet Explorer must be disallowed. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI315 - Participation in the Customer Experience Improvement Program must be disallowed. | CONFIGURATION MANAGEMENT |
| DTBI318 - Internet Explorer must be set to disallow users to add/delete sites. | CONFIGURATION MANAGEMENT |
| DTBI319 - Internet Explorer must be configured to disallow users to change policies. | CONFIGURATION MANAGEMENT |
| DTBI320 - Internet Explorer must be configured to use machine settings. | CONFIGURATION MANAGEMENT |
| DTBI325 - Security checking features must be enforced. | CONFIGURATION MANAGEMENT |
| DTBI340 - Active content from CDs must be disallowed to run on user machines. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI350 - Software must be disallowed to run or install with invalid signatures. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTBI355 - Third-party browser extensions must be disallowed. | CONFIGURATION MANAGEMENT |
