Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-235766 | EDGE-00-000054 | SV-235766r960969_rule | Medium |
Description |
---|
The setting allows websites to be blocked from tracking users' web-browsing activity. If this policy is disabled or is not configured, users can set their own level of tracking prevention. Policy options mapping: - TrackingPreventionOff (0) = Off (no tracking prevention) - TrackingPreventionBasic (1) = Basic (blocks harmful trackers; content and ads will be personalized) - TrackingPreventionBalanced (2) = Balanced (blocks harmful trackers and trackers from sites user has not visited; content and ads will be less personalized) - TrackingPreventionStrict (3) = Strict (blocks harmful trackers and majority of trackers from all sites; content and ads will have minimal personalization; some parts of sites might not work) |
STIG | Date |
---|---|
Microsoft Edge Security Technical Implementation Guide | 2024-06-10 |
Check Text ( C-38985r766872_chk ) |
---|
The policy value for "Computer Configuration/Administrative Templates/Microsoft Edge/Block tracking of users' web-browsing activity" must be set to "Enabled" with the option value set to "Balanced" or "Strict". Use the Windows Registry Editor to navigate to the following key: HKLM\SOFTWARE\Policies\Microsoft\Edge If the value for "TrackingPrevention" is not set to "REG_DWORD = 2" or "REG_DWORD = 3", this is a finding. |
Fix Text (F-38948r766873_fix) |
---|
Set the policy value for "Computer Configuration/Administrative Templates/Microsoft Edge/Block tracking of users' web-browsing activity" to "Balanced" or "Strict". |