Information
This policy setting allows users to have their feeds authenticated through the basic authentication scheme over an unencrypted HTTP connection.
The recommended state for this setting is: Disabled
Windows RSS Platform authenticates feeds to servers by using the Basic authentication scheme in combination with a less secure HTTP connection, which could lead to credential compromise or a data leak.
Solution
To establish the recommended configuration via GP, set the following UI path to Disabled :
Computer Configuration\Policies\Administrative Templates\Windows Components\RSS Feeds\Turn on Basic feed authentication over HTTP
Note: This Group Policy path is provided by the Group Policy template InetRes.admx/adml that is included with all versions of the Microsoft Windows Administrative Templates.
Impact:
Users will not be able to use the Basic authentication feature in the RSS Platform.