ARDC-CL-000330 - Adobe Reader DC must disable periodical uploading of European certificates.

Information

By default, the user can update European certificates from an Adobe server through the GUI.

When uploading European certificates is disabled, it prevents the automatic download and installation of certificates and disables and locks the end user's ability to upload those certificates.

Solution

Configure the following registry value:

Note: The Key Names 'cDigSig' and 'cEUTLDownload' are not created by default in the Adobe Reader DC install and must be created.

Registry Hive: HKEY_CURRENT_USER
Registry Path: \Software\Adobe\Acrobat Reader\2015\Security\cDigSig\cEUTLDownload

Value Name: bLoadSettingsFromURL
Type: REG_DWORD
Value: 0

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Adobe_Acrobat_Reader_DC_Classic_V2R1_STIG.zip

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-23(5), CAT|III, CCI|CCI-002470, Rule-ID|SV-213163r557349_rule, STIG-ID|ARDC-CL-000330, STIG-Legacy|SV-80297, STIG-Legacy|V-65807, Vuln-ID|V-213163

Plugin: Windows

Control ID: 50eb53666220205abb5c26aee2af3260b4302d21eb7353a674db2ac36e984e06