UCF STIG Viewer Logo

The Don't prompt for client certificate selection when no certificate or only one certificate exists is not set properly for the Trusted Sites Zone.


Overview

Finding ID Version Rule ID IA Controls Severity
V-6283 DTBI095 SV-6350r1_rule ECSC-1 Medium
Description
Client certificates should not be presented to web sites without the user's acknowledgement.
STIG Date
Microsoft IE Version 6 2014-12-17

Details

Check Text ( C-419r1_chk )
Procedure: Use the Windows Registry Editor to navigate to the following key: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2

Criteria: If the value 1A04 is REG_DWORD=3 (Disabled), this is not a finding.

Fix Text (F-5767r1_fix)
Change the registry key HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2 to the value 1A04 is 3.