Details

The ‘SitePerProcess’ policy can be used to prevent users from opting out of the default behavior of isolating all sites. Note that you can also use the ‘IsolateOrigins’ (Enable site isolation for specific origins) policy to isolate additional finer-grained origins.

If you enable this policy users can’t opt out of the default behavior where each site runs in its own process.

If you disable or don’t configure this policy a user can opt out of site isolation. (For example by using ‘Disable site isolation’ entry in edge://flags.) Disabling the policy or not configuring the policy doesn’t turn off Site Isolation.

Solution

Policy Path: Microsoft Edge
Policy Setting Name: Enable site isolation for every site

Supportive Information

The following resource is also helpful.

• https://techcommunity.microsoft.com/t5/microsoft-security-baselines/security-baseline-for-microsoft-edge-version-89/ba-p/2186265

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.

References

• 800-53|CM-6b.

Source

• Tenable.com/audits