| 1.2.1 Ensure 'Enable Google Cast' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.3.3 Ensure 'Control use of insecure content exceptions' is set to 'Enabled: Do not allow any site to load mixed content' | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.3.6 Ensure 'Control use of the File System API for writing' is set to 'Enabled: Don't allow any site to request write access to files and directories' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.3.9 Ensure 'Default automatic downloads setting' is set to 'Enabled: Don't allow any website to perform automatic downloads' | SYSTEM AND INFORMATION INTEGRITY |
| 1.3.10 Ensure 'Default geolocation setting' is set to 'Enabled: Don't allow any site to track users physical location' | CONFIGURATION MANAGEMENT |
| 1.5.1 Ensure 'Configure users ability to override feature flags' is set to 'Enabled: Prevent users from overriding feature flags' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.7.1 Ensure 'Allow Basic authentication for HTTP' is set to 'Disabled' | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.7.2 Ensure 'Allow cross-origin HTTP Basic Auth prompts' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.8.1 Ensure 'Enable the linked account feature' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.8.2 Ensure 'Guided Switch Enabled' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.13.1 Ensure 'Enable saving passwords to the password manager' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.14.1 Ensure 'Enable startup boost' is set to 'Disabled' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.17.1 Ensure 'Specifies whether to allow websites to make requests to more-private network endpoints' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.20.1 Ensure 'Configure Microsoft Defender SmartScreen' is set to 'Enabled' | SYSTEM AND INFORMATION INTEGRITY |
| 1.20.2 Ensure 'Configure Microsoft Defender SmartScreen to block potentially unwanted apps' is set to 'Enabled' | SYSTEM AND INFORMATION INTEGRITY |
| 1.20.3 Ensure 'Enable Microsoft Defender SmartScreen DNS requests' is set to 'Disabled' | SYSTEM AND INFORMATION INTEGRITY |
| 1.20.4 Ensure 'Force Microsoft Defender SmartScreen checks on downloads from trusted sources' is set to 'Enabled' | SYSTEM AND INFORMATION INTEGRITY |
| 1.20.5 Ensure 'Prevent bypassing Microsoft Defender SmartScreen prompts for sites' is set to 'Enabled' | SYSTEM AND INFORMATION INTEGRITY |
| 1.20.6 Ensure 'Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads' is set to 'Enabled' | SYSTEM AND INFORMATION INTEGRITY |
| 1.22.1 Ensure 'Configure Edge TyposquattingChecker' is set to 'Enabled' | SYSTEM AND INFORMATION INTEGRITY |
| 1.23 Ensure 'Ads setting for sites with intrusive ads' is set to 'Enabled: Block ads on sites with intrusive ads' | SYSTEM AND INFORMATION INTEGRITY |
| 1.24 Ensure 'Allow download restrictions' is set to 'Enabled: Block malicious downloads' | SYSTEM AND INFORMATION INTEGRITY |
| 1.27 Ensure 'Allow Google Cast to connect to Cast devices on all IP addresses' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.28 Ensure 'Allow import of data from other browsers on each Microsoft Edge launch' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.29 Ensure 'Allow importing of autofill form data' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.30 Ensure 'Allow importing of browser settings' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.31 Ensure 'Allow importing of home page settings' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.32 Ensure 'Allow importing of payment info' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.33 Ensure 'Allow importing of saved passwords' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.34 Ensure 'Allow importing of search engine settings' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.35 Ensure 'Allow managed extensions to use the Enterprise Hardware Platform API' is set to 'Disabled' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.39 Ensure 'Allow personalization of ads, Microsoft Edge, search, news and other Microsoft services by sending browsing history, favorites and collections, usage and other browsing data to Microsoft' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.40 Ensure 'Allow queries to a Browser Network Time service' is set to 'Enabled' | AUDIT AND ACCOUNTABILITY |
| 1.41 Ensure 'Allow remote debugging' is set to 'Disabled' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.42 Ensure 'Allow the audio sandbox to run' is set to 'Enabled' | CONFIGURATION MANAGEMENT |
| 1.44 Ensure 'Allow user feedback' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.48 Ensure 'Allow websites to query for available payment methods' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.50 Ensure 'Automatically import another browser's data and settings at first run' is set to 'Enabled: Disables automatic import, and the import section of the first-run experience is skipped' | CONFIGURATION MANAGEMENT |
| 1.52 Ensure 'Block tracking of users' web-browsing activity' is set to 'Enabled: Balanced (Blocks harmful trackers and trackers from sites user has not visited; content and ads will be less personalized)' | SYSTEM AND INFORMATION INTEGRITY |
| 1.54 Ensure 'Clear browsing data when Microsoft Edge closes' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.55 Ensure 'Clear cached images and files when Microsoft Edge closes' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.56 Ensure 'Clear history for IE and IE mode every time you exit' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.57 Ensure 'Configure browser process code integrity guard setting' is set to 'Enabled: Enable code integrity guard enforcement in the browser process' | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.58 Ensure 'Configure InPrivate mode availability' is set to 'Enabled: InPrivate mode disabled' | CONFIGURATION MANAGEMENT |
| 1.60 Ensure 'Configure Related Matches in Find on Page' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.62 Ensure 'Configure the list of names that will bypass the HSTS policy check' is set to 'Disabled' | ACCESS CONTROL |
| 1.63 Ensure 'Configure the list of types that are excluded from synchronization' is set to 'Enabled' | CONFIGURATION MANAGEMENT |
| 1.64 Ensure 'Configure the Share experience' is set to 'Enabled: Don't allow using the Share experience' | CONFIGURATION MANAGEMENT |
| 1.65 Ensure 'Configure whether form data and HTTP headers will be sent when entering or exiting Internet Explorer mode' is set to 'Enabled: Do not send form data or headers' | CONFIGURATION MANAGEMENT |
| 1.66 Ensure 'Continue running background apps after Microsoft Edge closes' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
