Site tracking of a user’s location must be disabled.

An XCCDF Rule

Description

Set whether websites can track users' physical locations. Tracking can be allowed by default ("AllowGeolocation") or denied by default ("BlockGeolocation"), or the user can be asked each time a website requests their location ("AskGeolocation"). If this policy is not configured, "AskGeolocation" is used and the user can change it. Policy options mapping: - AllowGeolocation (1) = Allow sites to track users' physical location. - BlockGeolocation (2) = Do not allow any site to track users' physical location. - AskGeolocation (3) = Ask whenever a site wants to track users' physical location.

ID: SV-235749r960963_rule
Version: EDGE-00-000032
Severity: Medium
References: CCI-000381
Updated: 24 days ago

Remediation Templates

Set the policy value for "Computer Configuration/Administrative Templates/Microsoft Edge/Content settings/Default geolocation setting" to "enabled" and select "Don't allow any site to track users' physical location".

Site tracking of a user’s location must be disabled.

Description

Remediation Templates

A Manual Procedure