Skip to content

No profile (default benchmark)

Rules and Groups employed by this XCCDF Profile

  • SRG-APP-000141

    <GroupDescription></GroupDescription>
    Group
  • Importing of shortcuts must be disabled.

    &lt;VulnDiscussion&gt;Allows users to import Shortcuts from another browser into Microsoft Edge. If this policy is disabled, Shortcuts are not imp...
    Rule Medium Severity
  • SRG-APP-000141

    <GroupDescription></GroupDescription>
    Group
  • AutoplayAllowed must be set to disabled.

    &lt;VulnDiscussion&gt;This policy sets the media autoplay policy for websites. The default setting "Not configured" respects the current media aut...
    Rule Medium Severity
  • SRG-APP-000141

    <GroupDescription></GroupDescription>
    Group
  • WebUSB must be disabled.

    &lt;VulnDiscussion&gt;Set whether websites can access connected USB devices. Access can be blocked completely or the user asked each time a website...
    Rule Medium Severity
  • SRG-APP-000141

    <GroupDescription></GroupDescription>
    Group
  • Google Cast must be disabled.

    &lt;VulnDiscussion&gt;Enable this policy to enable Google Cast. Users will be able to launch it from the app menu, page context menus, media contro...
    Rule Medium Severity
  • SRG-APP-000141

    <GroupDescription></GroupDescription>
    Group
  • Web Bluetooth API must be disabled.

    &lt;VulnDiscussion&gt;Control whether websites can access nearby Bluetooth devices. Access can be blocked completely or the site required to ask th...
    Rule Medium Severity
  • SRG-APP-000141

    <GroupDescription></GroupDescription>
    Group
  • Autofill for Credit Cards must be disabled.

    &lt;VulnDiscussion&gt;Enables the Microsoft Edge AutoFill feature and lets users auto complete credit card information in web forms using previousl...
    Rule Medium Severity
  • SRG-APP-000141

    <GroupDescription></GroupDescription>
    Group
  • Autofill for addresses must be disabled.

    &lt;VulnDiscussion&gt;Enables the AutoFill feature and allows users to auto-complete address information in web forms using previously stored infor...
    Rule Medium Severity
  • SRG-APP-000175

    <GroupDescription></GroupDescription>
    Group
  • Online revocation checks must be performed.

    &lt;VulnDiscussion&gt;If you enable this policy, Microsoft Edge will perform soft-fail, online OCSP/CRL checks. "Soft fail" means that if the revoc...
    Rule Medium Severity
  • SRG-APP-000141

    <GroupDescription></GroupDescription>
    Group
  • Personalization of ads, search, and news by sending browsing history to Microsoft must be disabled.

    &lt;VulnDiscussion&gt;This policy prevents Microsoft from collecting a user's Microsoft Edge browsing history to be used for personalizing advertis...
    Rule Medium Severity
  • SRG-APP-000141

    <GroupDescription></GroupDescription>
    Group
  • Site tracking of a user’s location must be disabled.

    &lt;VulnDiscussion&gt;Set whether websites can track users' physical locations. Tracking can be allowed by default ("AllowGeolocation") or denied b...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules