Details
This policy setting is used to prevent users from deleting cookies. This feature is available
in the Delete Browsing History dialog box. If you enable this policy setting, cookies will be
preserved when the user clicks Delete. If you disable this policy setting, cookies will be
deleted when the user clicks Delete. If you do not configure this policy setting, the user will
be able to choose whether to delete or preserve cookies when the user clicks Delete. If the
‘Turn off Delete Browsing History functionality’ policy is enabled, this policy is enabled by
default. Configure this setting in a manner that is consistent with security and operational
requirements of your organization.
*Rationale*
If a user is suspected of visiting unauthorized website the information stored in the data
cookies could be useful in verifying where he or she went online.
Solution
To establish the recommended configuration via Group Policy, set the following UI path to
Not Configured.
Computer ConfigurationAdministrative TemplatesWindows ComponentsInternet
ExplorerDelete Browsing HistoryPrevent Deleting Cookies
Impact-If you enable this policy setting, users will not be able to delete cookies. If you disable or do
not configure this policy setting, users will be able to delete cookies.
Default Value-Disabled
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Windows.