EDGE-00-000051 - Microsoft Defender SmartScreen must be configured to block potentially unwanted apps.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

This policy setting configures blocking for potentially unwanted apps with Microsoft Defender SmartScreen. Potentially unwanted app blocking with Microsoft Defender SmartScreen provides warning messages to help protect users from adware, coin miners, bundleware, and other low-reputation apps that are hosted by websites. Potentially unwanted app blocking with Microsoft Defender SmartScreen is turned off by default.

If this setting is enabled, potentially unwanted app blocking with Microsoft Defender SmartScreen is turned on.

If this setting is disabled, potentially unwanted app blocking with Microsoft Defender SmartScreen is turned off.

If this setting is not configured, users can choose whether to use potentially unwanted app blocking with Microsoft Defender SmartScreen.

This policy is available only on Windows instances that are joined to a Microsoft Active Directory domain, Windows 10 Pro or Enterprise instances that enrolled for device management, or macOS instances that are managed via MDM or joined to a domain via MCX.

Solution

Set the policy value for 'Computer Configuration/Administrative Templates/Microsoft Edge/SmartScreen settings/Configure Microsoft Defender SmartScreen to block potentially unwanted apps' to 'Enabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Edge_V1R6_STIG.zip

Item Details

References: CAT|II, CCI|CCI-000381, Rule-ID|SV-235764r766871_rule, STIG-ID|EDGE-00-000051, Vuln-ID|V-235764

Plugin: Windows

Control ID: 085db554f62db781255a8d5c804e870a4f79fbb69738977b7421425d59924845