1.1.53 Ensure 'Enable renderer code integrity' is set to 'Enabled'

Information

This policy setting controls whether unknown and potentially hostile code will be allowed to load inside of Microsoft Edge.

The recommended state for this setting is: Enabled.

Rationale:

Disabling this setting could have a detrimental effect on Microsoft Edge's security and stability as unknown, hostile, and/or unstable code will be able to load within the browser's renderer processes.

Impact:

None - this is the default behavior.

Solution

To establish the recommended configuration via GP, set the following UI path to Enabled

Computer Configuration\Policies\Administrative Templates\Microsoft Edge\Enable renderer code integrity

Note: This Group Policy path may not exist by default. It is provided by the Group Policy template MSEdge.admx/adml that can be downloaded from Microsoft here.




Default Value:

Enabled.

See Also

https://workbench.cisecurity.org/files/3005