Details

Set whether websites can track users’ physical locations. Tracking can be allowed by default (‘AllowGeolocation’) or denied by default (‘BlockGeolocation’), or the user can be asked each time a website requests their location (‘AskGeolocation’).

If this policy is not configured, ‘AskGeolocation’ is used and the user can change it.

Policy options mapping:

– AllowGeolocation (1) = Allow sites to track users’ physical location.

– BlockGeolocation (2) = Do not allow any site to track users’ physical location.

– AskGeolocation (3) = Ask whenever a site wants to track users’ physical location.

Solution

Set the policy value for ‘Computer Configuration/Administrative Templates/Microsoft Edge/Content settings/Default geolocation setting’ to ‘enabled’ and select ‘Don’t allow any site to track users’ physical location’.

Supportive Information

The following resource is also helpful.

• https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Edge_V1R4_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.

References

• 800-53|CM-7a.
• CAT|II
• CCI|CCI-000381
• Rule-ID|SV-235749r626523_rule
• STIG-ID|EDGE-00-000032
• Vuln-ID|V-235749

Source

• Tenable.com/audits