| 1.4.1 (L2) Ensure 'Allow read access via the File System API on these sites' is set to 'Disabled' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.4.2 (L2) Ensure 'Choose whether users can receive customized background images and text, suggestions, notifications, and tips for Microsoft services' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.4.4 (L2) Ensure 'Control use of JavaScript JIT' is set to 'Enabled: Do not allow any site to run JavaScript JIT' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.4.5 (L2) Ensure 'Control use of the File System API for reading' is set to 'Enabled: Don't allow any site to request read access to files and directories via the File System API' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.4.7 (L2) Ensure 'Control use of the Web Bluetooth API' is set to 'Enabled: Do not allow any site to request access to Bluetooth devices via the Web Bluetooth API' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.4.8 (L2) Ensure 'Control use of the WebHID API' is set to 'Enabled: Do not allow any site to request access to HID devices via the WebHID API' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.4.11 (L2) Ensure 'Default setting for third-party storage partitioning' is set to 'Enabled: Block third-party storage partitioning from being enabled.' | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.10.2 (L2) Ensure 'Configure extension management settings' is set to 'Enabled: { '*': {'installation_mode': 'blocked' }}' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.13.3 (L2) Ensure 'Supported authentication schemes' is set to 'Enabled: ntlm, negotiate' | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.35 (L2) Ensure 'Allow features to download assets from the Asset Delivery Service' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.36 (L2) Ensure 'Allow file selection dialogs' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.46 (L2) Ensure 'Allow or block audio capture' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.47 (L2) Ensure 'Allow or block video capture' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.48 (L2) Ensure 'Allow or deny screen capture' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.53 (L2) Ensure 'Allow unconfigured sites to be reloaded in Internet Explorer mode' is set to 'Disabled' | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.55 (L2) Ensure 'Allow users to open files using the ClickOnce protocol' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.56 (L2) Ensure 'Allow users to open files using the DirectInvoke protocol' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.57 (L2) Ensure 'Allow users to proceed from the HTTPS warning page' is set to 'Disabled' | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.60 (L2) Ensure 'AutoLaunch Protocols Component Enabled' is set to 'Disabled' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.63 (L2) Ensure 'Block third party cookies' is set to 'Enabled' | SYSTEM AND INFORMATION INTEGRITY |
| 1.65 (L2) Ensure 'Browser sign-in settings' is set to 'Enabled: Disable browser sign-in' | CONFIGURATION MANAGEMENT |
| 1.71 (L2) Ensure 'Configure Online Text To Speech' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.73 (L2) Ensure 'Configure Speech Recognition' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.79 (L2) Ensure 'Control use of the Headless Mode' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.80 (L2) Ensure 'Control use of the Serial API' is set to 'Enable: Do not allow any site to request access to serial ports via the Serial API' | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.82 (L2) Ensure 'Default sensors setting' is set to 'Enabled: Do not allow any site to access sensors' | CONFIGURATION MANAGEMENT |
| 1.96 (L2) Ensure 'Enable Drop feature in Microsoft Edge' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.98 (L2) Ensure 'Enable guest mode' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.102 (L2) Ensure 'Enable search suggestions' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.107 (L2) Ensure 'Enable Translate' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.111 (L2) Ensure 'Enable QR Code Generator' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.113 (L2) Ensure 'Enforce Bing SafeSearch' is set to 'Enabled: Configure moderate search restrictions in Bing' | CONFIGURATION MANAGEMENT |
| 1.114 (L2) Ensure 'Enforce Google SafeSearch' is set to 'Enabled' | CONFIGURATION MANAGEMENT |
| 1.116 (L2) Ensure 'Enhanced Security Mode configuration for Intranet zone sites' is set to 'Disabled' | SYSTEM AND INFORMATION INTEGRITY |
| 1.119 (L2) Ensure 'Live captions allowed' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.125 (L2) Ensure 'Show an 'Always open' checkbox in external protocol dialog' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.129 (L2) Ensure 'Specify if online OCSP/CRL checks are required for local trust anchors' is set to 'Enabled' | CONFIGURATION MANAGEMENT |
| 1.130 (L2) Ensure 'Spell checking provided by Microsoft Editor' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| 1.134 (L2) Ensure 'Text prediction enabled by default' is set to 'Disabled' | CONFIGURATION MANAGEMENT |
| CIS_Microsoft_Edge_v4.0.0_L2.audit from CIS Microsoft Edge v4.0.0 | |
