1.103 Ensure 'Set the time period for update notifications' is set to 'Enabled: 86400000'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

This setting does not determine if updates are applied, the policy setting allows setting a time period in which users are notified that Microsoft Edge has been updated and must be closed and re-opened.

The recommended state for this setting is: Enabled: 86400000.

Rationale:

This setting is a notification for the end-user informing them that an update has been applied and that the browser must be restarted in order for the update to be completed. Once updates have been pushed by the organization it is pertinent that said update takes affect as soon as possible. Enabling this notification will ensure users restart the browser in a timely fashion.

Impact:

When updates are applied by an organization the end-user will receive a notification after 24 hours that they must restart the browser for updates to complete.

Solution

To establish the recommended configuration via GP, set the following UI path to Enabled: 86400000:

Computer Configuration\Policies\Administrative Templates\Microsoft Edge\Set the time period for update notifications

Note: This Group Policy path may not exist by default. It is provided by the Group Policy template MSEdge.admx/adml that can be downloaded from Microsoft here.

Default Value:

Enabled. (One week.)

See Also

https://workbench.cisecurity.org/files/4094