Allow Basic authentication for HTTP

Information

If you enable this policy or leave it unset Basic authentication challenges received over non-secure HTTP will be allowed.

If you disable this policy non-secure HTTP requests from the Basic authentication scheme are blocked and only secure HTTPS is allowed.

Solution

Policy Path: Microsoft Edge\HTTP authentication
Policy Setting Name: Allow Basic authentication for HTTP

See Also

https://techcommunity.microsoft.com/t5/microsoft-security-baselines/security-baseline-for-microsoft-edge-version-89/ba-p/2186265

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(6)

Plugin: Windows

Control ID: 4b26a75c854739e644719786a9fe1c2f6f5391421e597744013a7773a414bfac