EDGE-00-000048 – Supported authentication schemes must be configured.

Details

This setting specifies which HTTP authentication schemes are supported.

The policy can be configured by using these values: ‘basic’, ‘digest’, ‘ntlm’, and ‘negotiate’. Separate multiple values with commas.

If this policy is not configured, all four schemes are used.

Solution

Set the policy value for ‘Computer Configuration/Administrative Templates/Microsoft Edge/HTTP authentication/Supported authentication schemes’ to ‘ntlm,negotiate’.

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Edge_V1R4_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.

References

800-53|CM-7b.
CAT|II
CCI|CCI-000382
Rule-ID|SV-235761r766865_rule
STIG-ID|EDGE-00-000048
Vuln-ID|V-235761

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles