ADBP-XI-001335 – Adobe Acrobat Pro XI certified document trust must be disabled.

Details

Certified document trust elevates signed PDF files to a privileged location and bypasses privileged view security protections. Disabling certified documents disables and locks the end user’s ability to elevate certified documents as a privileged location.

Solution

Configure the following registry value:

Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: SoftwarePoliciesAdobeAdobe Acrobat11.0FeatureLockDown

Value Name: bEnableCertificateBasedTrust
Type: REG_DWORD
Value: 0

Supportive Information

The following resource is also helpful.

https://iasecontent.disa.mil/stigs/zip/U_Adobe_Acrobat_Pro_XI_V1R2_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.

References

800-53|CM-5(1)
CAT|II
CCI|CCI-001813
Rule-ID|SV-89977r1_rule
STIG-ID|ADBP-XI-001335
Vuln-ID|V-75297

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles