CIS Microsoft Edge L1 v2.0.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Microsoft Edge L1 v2.0.0

Updated: 10/28/2024

Authority: CIS

Plugin: Windows

Revision: 1.4

Estimated Item Count: 91

File Details

Filename: CIS_Microsoft_Edge_v2.0.0_L1.audit

Size: 161 kB

MD5: 903717edffea10e2182c24ee398cac57
SHA256: a2fbb8708c7cc4341aae8943a5848fe8624c3e153d93ef68d0e9753bd8446e69

Audit Items

DescriptionCategories
1.2.1 Ensure 'Enable Google Cast' is set to 'Disabled'
1.3.3 Ensure 'Control use of insecure content exceptions' is set to 'Enabled: Do not allow any site to load mixed content'
1.3.6 Ensure 'Control use of the File System API for writing' is set to 'Enabled: Don't allow any site to request write access to files and directories'
1.3.9 Ensure 'Default automatic downloads setting' is set to 'Enabled: Don't allow any website to perform automatic downloads'
1.3.10 Ensure 'Default geolocation setting' is set to 'Enabled: Don't allow any site to track users physical location'
1.5.1 Ensure 'Configure users ability to override feature flags' is set to 'Enabled: Prevent users from overriding feature flags'
1.7.1 Ensure 'Allow Basic authentication for HTTP' is set to 'Disabled'
1.7.2 Ensure 'Allow cross-origin HTTP Basic Auth prompts' is set to 'Disabled'
1.8.1 Ensure 'Enable the linked account feature' is set to 'Disabled'
1.8.2 Ensure 'Guided Switch Enabled' is set to 'Disabled'
1.13.1 Ensure 'Enable saving passwords to the password manager' is set to 'Disabled'
1.14.1 Ensure 'Enable startup boost' is set to 'Disabled'
1.17.1 Ensure 'Specifies whether to allow websites to make requests to more-private network endpoints' is set to 'Disabled'
1.20.1 Ensure 'Configure Microsoft Defender SmartScreen' is set to 'Enabled'
1.20.2 Ensure 'Configure Microsoft Defender SmartScreen to block potentially unwanted apps' is set to 'Enabled'
1.20.3 Ensure 'Enable Microsoft Defender SmartScreen DNS requests' is set to 'Disabled'
1.20.4 Ensure 'Force Microsoft Defender SmartScreen checks on downloads from trusted sources' is set to 'Enabled'
1.20.5 Ensure 'Prevent bypassing Microsoft Defender SmartScreen prompts for sites' is set to 'Enabled'
1.20.6 Ensure 'Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads' is set to 'Enabled'
1.22.1 Ensure 'Configure Edge TyposquattingChecker' is set to 'Enabled'
1.23 Ensure 'Ads setting for sites with intrusive ads' is set to 'Enabled: Block ads on sites with intrusive ads'
1.24 Ensure 'Allow download restrictions' is set to 'Enabled: Block malicious downloads'
1.27 Ensure 'Allow Google Cast to connect to Cast devices on all IP addresses' is set to 'Disabled'
1.28 Ensure 'Allow import of data from other browsers on each Microsoft Edge launch' is set to 'Disabled'
1.29 Ensure 'Allow importing of autofill form data' is set to 'Disabled'
1.30 Ensure 'Allow importing of browser settings' is set to 'Disabled'
1.31 Ensure 'Allow importing of home page settings' is set to 'Disabled'
1.32 Ensure 'Allow importing of payment info' is set to 'Disabled'
1.33 Ensure 'Allow importing of saved passwords' is set to 'Disabled'
1.34 Ensure 'Allow importing of search engine settings' is set to 'Disabled'
1.35 Ensure 'Allow managed extensions to use the Enterprise Hardware Platform API' is set to 'Disabled'
1.39 Ensure 'Allow personalization of ads, Microsoft Edge, search, news and other Microsoft services by sending browsing history, favorites and collections, usage and other browsing data to Microsoft' is set to 'Disabled'
1.40 Ensure 'Allow queries to a Browser Network Time service' is set to 'Enabled'
1.41 Ensure 'Allow remote debugging' is set to 'Disabled'
1.42 Ensure 'Allow the audio sandbox to run' is set to 'Enabled'
1.44 Ensure 'Allow user feedback' is set to 'Disabled'
1.48 Ensure 'Allow websites to query for available payment methods' is set to 'Disabled'
1.50 Ensure 'Automatically import another browser's data and settings at first run' is set to 'Enabled: Disables automatic import, and the import section of the first-run experience is skipped'
1.52 Ensure 'Block tracking of users' web-browsing activity' is set to 'Enabled: Balanced (Blocks harmful trackers and trackers from sites user has not visited; content and ads will be less personalized)'
1.54 Ensure 'Clear browsing data when Microsoft Edge closes' is set to 'Disabled'
1.55 Ensure 'Clear cached images and files when Microsoft Edge closes' is set to 'Disabled'
1.56 Ensure 'Clear history for IE and IE mode every time you exit' is set to 'Disabled'
1.57 Ensure 'Configure browser process code integrity guard setting' is set to 'Enabled: Enable code integrity guard enforcement in the browser process'
1.58 Ensure 'Configure InPrivate mode availability' is set to 'Enabled: InPrivate mode disabled'
1.60 Ensure 'Configure Related Matches in Find on Page' is set to 'Disabled'
1.62 Ensure 'Configure the list of names that will bypass the HSTS policy check' is set to 'Disabled'
1.63 Ensure 'Configure the list of types that are excluded from synchronization' is set to 'Enabled'
1.64 Ensure 'Configure the Share experience' is set to 'Enabled: Don't allow using the Share experience'
1.65 Ensure 'Configure whether form data and HTTP headers will be sent when entering or exiting Internet Explorer mode' is set to 'Enabled: Do not send form data or headers'
1.66 Ensure 'Continue running background apps after Microsoft Edge closes' is set to 'Disabled'