Detections
Analytics
ADBP-XI-001335 - Adobe Acrobat Pro XI certified document trust must be disabled.
Information
Certified document trust elevates signed PDF files to a privileged location and bypasses privileged view security protections. Disabling certified documents disables and locks the end user's ability to elevate certified documents as a privileged location.Solution
Configure the following registry value:Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: \Software\Policies\Adobe\Adobe Acrobat\11.0\FeatureLockDown
Value Name: bEnableCertificateBasedTrust
Type: REG_DWORD
Value: 0
See Also
https://iasecontent.disa.mil/stigs/zip/U_Adobe_Acrobat_Pro_XI_V1R2_STIG.zip
Item Details
Audit Name: DISA Adobe Acrobat Pro XI STIG v1r2
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-7, CAT|II, CCI|CCI-001813, Rule-ID|SV-89977r1_rule, STIG-ID|ADBP-XI-001335, Vuln-ID|V-75297
Plugin: Windows
Control ID: 106689022d14660a8ff5eeb821834d3611a0ddd33e7cbbc417716c3f7abfecf4