Set the default behavior for AutoRun

Information

This policy setting sets the default behavior for Autorun commands. Autorun commands are generally stored in autorun.inf files. They often launch the installation program or other routines. Prior to Windows Vista when media containing an autorun command is inserted the system will automatically execute the program without user intervention. This creates a major security concern as code may be executed without user's knowledge. The default behavior starting with Windows Vista is to prompt the user whether autorun command is to be run. The autorun command is represented as a handler in the Autoplay dialog. If you enable this policy setting an Administrator can change the default Windows Vista or later behavior for autorun to: a) Completely disable autorun commands or b) Revert back to pre-Windows Vista behavior of automatically executing the autorun command. If you disable or not configure this policy setting Windows Vista or later will prompt the user whether autorun command is to be run.

Solution

Policy Path: Windows Components\AutoPlay Policies
Policy Setting Name: Set the default behavior for AutoRun

See Also

https://techcommunity.microsoft.com/t5/microsoft-security-baselines/windows-11-version-22h2-security-baseline/ba-p/3632520

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-18(4)

Plugin: Windows

Control ID: f069df996db36cd799df4f84c1580f18b031966736f5f3072991ec0b0f8ef1a3