EDGE-00-000047 - Site isolation for every site must be enabled.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

The 'SitePerProcess' policy can be used to prevent users from opting out of the default behavior of isolating all sites. The 'IsolateOrigins' policy can be used to isolate additional, finer-grained origins.

Enabling this policy prevents users from opting out of the default behavior where each site runs in its own process.

If this policy is not disabled or configured, a user can opt out of site isolation (e.g., by using 'Disable site isolation' entry in edge://flags.) Disabling the policy or not configuring the policy does not turn off Site Isolation.

Solution

Set the policy value for 'Computer Configuration/Administrative Templates/Microsoft Edge/Enable site isolation for every site' to 'enabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Edge_V1R6_STIG.zip

Item Details

References: CAT|II, CCI|CCI-000381, Rule-ID|SV-235760r626523_rule, STIG-ID|EDGE-00-000047, Vuln-ID|V-235760

Plugin: Windows

Control ID: 2407da91b4d4694c7976a64f8d70d8f553f69240cd9357dc7e2988c9fa65c779