8.3.31 Set 'Userdata persistence' to 'Enabled:Disable'

Information



This policy setting allows you to manage the preservation of information in the browser's
history, in favorites, in an XML store, or directly within a Web page saved to disk. When a
user returns to a persisted page, the state of the page can be restored if this policy setting is
appropriately configured. If you enable this policy setting, users can preserve information
in the browser's history, in favorites, in an XML store, or directly within a Web page saved
to disk. If you disable this policy setting, users cannot preserve information in the
browser's history, in favorites, in an XML store, or directly within a Web page saved to
disk. If you do not configure this policy setting, users cannot preserve information in the
browser's history, in favorites, in an XML store, or directly within a Web page saved to disk.
The recommended state for this setting is- Enabled-Disable.

*Rationale*

Organizations may want to disable this feature in order to prevent business data from
being stored by Internet Explorer, in the past some sites hosting malicious content
exploited this feature as part of an attack against visitors browsing the site.

Solution

To establish the recommended configuration via Group Policy, set the following UI path to
Enabled.

Computer Configuration\Administrative Templates\Windows Components\Internet
Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Userdata
persistenceThen set the Userdata persistence option to Disable.

See Also

https://workbench.cisecurity.org/files/1518

Item Details

Audit Name: CIS IE 11 v1.0.0

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-28

Plugin: Windows

Control ID: f7e8cb78d3abaa8f92c8718d87303429a1fd0589d359bc63b60cd84355ea6905