EDGE-00-000001 - User control of proxy settings must be disabled.

Information

This action configures the proxy settings for Microsoft Edge.

If this policy is enabled, Microsoft Edge ignores all proxy-related options specified from the command line.

If this policy is not configured, users can choose their own proxy settings.

This policy overrides the following individual policies:
- ProxyMode
- ProxyPacUrl
- ProxyServer
- ProxyBypassList

Setting the ProxySettings policy accepts the following fields:
- ProxyMode, which allows for the proxy server used by Microsoft Edge to be specified and prevents users from changing proxy settings.
- ProxyPacUrl, a URL to a proxy .pac file.
- ProxyServer, a URL for the proxy server.
- ProxyBypassList, a list of proxy hosts that Microsoft Edge bypasses.

For ProxyMode, the following values have the noted impact:
- direct, a proxy is never used and all other fields are ignored.
- system, the system's proxy is used and all other fields are ignored.
- auto_detect, all other fields are ignored.
- fixed_servers, the ProxyServer and ProxyBypassList fields are used.
- pac_script, the ProxyPacUrl and ProxyBypassList fields are used.

Solution

Set the policy value for 'Computer Configuration/Administrative Templates/Microsoft Edge/Proxy server/Proxy Settings' to 'ProxyMode', 'ProxyPacUrl', 'ProxyServer', or 'ProxyBypassList'.

If 'ProxyMode' is selected, one of the following must also be set: 'direct', 'system', 'auto_detect', 'fixed_servers', or 'pac_script'.

Example policy text:
SOFTWARE\Policies\Microsoft\Edge\ProxySettings = {
'ProxyBypassList': 'https://www.example1.com,https://www.example2.com,https://internalsite/',
'ProxyMode': 'pac_script',
'ProxyPacMandatory': false,
'ProxyPacUrl': 'https://internal.site/example.pac',
'ProxyServer': '123.123.123.123:8080'
}

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Edge_V2R1_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-4, CAT|III, CCI|CCI-001414, Rule-ID|SV-235719r960804_rule, STIG-ID|EDGE-00-000001, Vuln-ID|V-235719

Plugin: Windows

Control ID: 98dd5cf7b096e65774230490e723b51a77469038d6beec6a84e25067bc5b2909