EDGE-00-000042 – Extensions that are approved for use must be allowlisted.

Details

By default, all extensions are allowed. However, if all extensions are blocked by setting the ‘ExtensionInstallBlockList’ policy to ‘*,’ users can only install extensions defined in this policy.

Solution

Set the policy value for ‘Computer Configuration/Administrative Templates/Microsoft Edge/Extensions/Allow specific extensions to be installed’ to ‘Enabled’. A list of allowlisted extensions may then be specified.

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Edge_V1R4_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.

References

800-53|CM-7(5)(b)
CAT|II
CCI|CCI-001774
Rule-ID|SV-235755r766863_rule
STIG-ID|EDGE-00-000042
Vuln-ID|V-235755

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles