UCF STIG Viewer Logo

Internet Explorer is not configured to require consistent security zone settings to all users.


Overview

Finding ID Version Rule ID IA Controls Severity
V-3427 DTBI320 SV-3427r1_rule ECSC-1 Medium
Description
This setting enforces consistent security zone settings to all users of the computer. Security Zones control browser behavior at various web sites and it is desirable to maintain a consistent policy for all users of a machine.
STIG Date
Microsoft IE Version 6 2014-12-17

Details

Check Text ( C-1745r1_chk )
If the following registry value doesn’t exist or is not configured as specified this is a finding:

Registry Hive: HKEY_LOCAL_MACHINE
Subkey: \Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\

Value Name: Security_HKLM_only

Type: REG_DWORD
Value: 1
Fix Text (F-5909r1_fix)
Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Internet Explorer “Security Zones: Use only machine settings” to “Enabled”.