1.7.3 Ensure 'Supported authentication schemes' is set to 'Enabled: ntlm, negotiate'
This setting specifies what HTTP authentication methods are supported by Microsoft Edge. The recommended setting is Enabled: ntlm, negotiate. Rationale: Basic and Digest authentication do not provide sufficient security and can lead to submission of users password in plaintext or minimal protection (Integrated Authentication is supported for negotiate and ntlm challenges only). Impact: Any sites that utilizes Basic or Digest Authentication will be impacted. Sites will need to be reconfigured to support a more secure form of authentication.
To establish the recommended configuration via GP, set the following UI path to Enabled: ntlm, negotiate: Computer Configuration\Policies\Administrative Templates\Microsoft Edge\HTTP authentication\Supported authentication schemes Note: This Group Policy path may not exist by default. It is provided by the Group Policy template MSEdge.admx/adml that can be downloaded from Microsoft here. Default Value: Enabled. (The following schemes will be used: basic, digest, ntlm, and negotiate.)