STIGQter STIGQter: STIG Summary:

Microsoft Edge Security Technical Implementation Guide

Version: 1

Release: 1 Benchmark Date: 14 Jan 2021

SV-235719r626523_ruleUser control of proxy settings must be disabled.
SV-235720r626523_ruleBypassing Microsoft Defender SmartScreen prompts for sites must be disabled.
SV-235721r626523_ruleBypassing of Microsoft Defender SmartScreen warnings about downloads must be disabled.
SV-235722r626523_ruleThe list of domains for which Microsoft Defender SmartScreen will not trigger warnings must be whitelisted if used.
SV-235723r626523_ruleInPrivate mode must be disabled.
SV-235724r626523_ruleBackground processing must be disabled.
SV-235725r626523_ruleThe ability of sites to show pop-ups must be disabled.
SV-235726r626523_ruleThe default search provider must be set to use an encrypted connection.
SV-235727r626523_ruleData Synchronization must be disabled.
SV-235728r626523_ruleNetwork prediction must be disabled.
SV-235729r626523_ruleSearch suggestions must be disabled.
SV-235730r626523_ruleImporting of autofill form data must be disabled.
SV-235731r626523_ruleImporting of browser settings must be disabled.
SV-235732r626523_ruleImporting of cookies must be disabled.
SV-235733r626523_ruleImporting of extensions must be disabled.
SV-235734r626540_ruleImporting of browsing history must be disabled.
SV-235735r626523_ruleImporting of home page settings must be disabled.
SV-235736r626523_ruleImporting of open tabs must be disabled.
SV-235737r626523_ruleImporting of payment info must be disabled.
SV-235738r626523_ruleImporting of saved passwords must be disabled.
SV-235739r626523_ruleImporting of search engine settings must be disabled.
SV-235740r626523_ruleImporting of shortcuts must be disabled.
SV-235741r626523_ruleAutoplay must be disabled.
SV-235742r626523_ruleWebUSB must be disabled.
SV-235743r626523_ruleGoogle Cast must be disabled.
SV-235744r626523_ruleWeb Bluetooth API must be disabled.
SV-235745r626523_ruleAutofill for Credit Cards must be disabled.
SV-235746r626523_ruleAutofill for addresses must be disabled.
SV-235747r626523_ruleOnline revocation checks must be performed.
SV-235748r626523_rulePersonalization of ads, search, and news by sending browsing history to Microsoft must be disabled.
SV-235749r626523_ruleSite tracking of a user’s location must be disabled.
SV-235750r626523_ruleBrowser history must be saved.
SV-235751r626523_ruleEdge development tools must be disabled.
SV-235752r640149_ruleDownload restrictions must be configured.
SV-235753r626523_ruleURLs must be whitelisted for plugin use.
SV-235754r626523_ruleExtensions installation must be blocklisted by default.
SV-235755r626523_ruleExtensions that are approved for use must be allowlisted.
SV-235756r626523_ruleThe Password Manager must be disabled.
SV-235757r626523_ruleThe HTTPS warning page must not be able to be bypassed.
SV-235758r626523_ruleThe version of Microsoft Edge running on the system must be a supported version.
SV-235759r626523_ruleEdge must be configured to allow only TLS.
SV-235760r626523_ruleSite isolation for every site must be enabled.
SV-235761r626523_ruleSupported authentication schemes must be configured.
SV-235762r626543_ruleMessaging hosts that are used must be installed with administrative privileges.
SV-235763r626523_ruleMicrosoft Defender SmartScreen must be enabled.
SV-235764r626523_ruleMicrosoft Defender SmartScreen must be configured to block potentially unwanted apps.
SV-235765r626523_ruleThe download location prompt must be configured.
SV-235766r626523_ruleTracking of browsing activity must be disabled.
SV-235767r626523_ruleA website's ability to query for payment methods must be disabled.
SV-235768r626523_ruleSuggestions of similar web pages in the event of a navigation error must be disabled.
SV-235769r626523_ruleUser feedback must be disabled.
SV-235770r626523_ruleThe collections feature must be disabled.
SV-235771r626523_ruleThe Share Experience feature must be disabled.
SV-235772r626523_ruleGuest mode must be disabled.
SV-235773r626523_ruleRelaunch notification must be required.
SV-235774r626523_ruleThe built-in DNS client must be disabled.