Details
This policy setting allows Adobe Flash content embedded in websites to run.
The recommended state for this setting is Disabled.
Rationale:
Allowing flash plugins or ‘hidden’ Flash content could open up a user to malicious content and activity. In addition, Adobe Flash will no longer be supported by the manufacturer as of December 31, 2021.
Impact:
Adobe Flash content may be blocked from the end user.
Solution
To establish the recommended configuration via GP, set the following UI path to Disabled
Computer ConfigurationPoliciesAdministrative TemplatesMicrosoft EdgeExtend Adobe Flash content setting to all content
Note: This Group Policy path may not exist by default. It is provided by the Group Policy template MSEdge.admx/adml that can be downloaded from Microsoft here.
Default Value:
Disabled.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.