ASD's Blueprint for Secure Cloud

Security Baseline for Microsoft Edge

This section describes the configuration of security baselines within Microsoft Intune associated with systems built according to the guidance provided by ASD's Blueprint for Secure Cloud.

Estimated reading time: 2 minutes

Basics

ItemValue
NameSecurity Baseline for Microsoft Edge
Description
PlatformWindows 10 and later

Assignments

ItemValue
Included groups
Excluded groups

Configuration settings

Microsoft Edge

ItemValue
Allow unconfigured sites to be reloaded in Internet Explorer modeDisabled
Allow users to proceed from the HTTPS warning pageDisabled
Enable browser legacy extension point blockingEnabled
Enable site isolation for every siteEnabled
Enhance images enabledDisabled
Force WebSQL to be enabledDisabled
Minimum TLS version enabledEnabled
- Minimum SSL version enabled (Device)TLS 1.2
Show the Reload in Internet Explorer mode button in the toolbarDisabled
Specifies whether SharedArrayBuffers can be used in a non cross-origin-isolated contextDisabled
Extensions
ItemValue
Control which extensions cannot be installedEnabled
Extension IDs the user should be prevented from installing (or * for all) (Device)*
HTTP authentication
ItemValue
Allow Basic authentication for HTTPDisabled
Supported authentication schemesEnabled
Supported authentication schemes (Device)ntlm,negotiate
Native Messaging
ItemValue
Allow user-level native messaging hosts (installed without admin permissions)Disabled
Password manager and protection
ItemValue
Enable saving passwords to the password managerDisabled
Private Network Request Settings
ItemValue
Specifies whether to allow insecure websites to make requests to more-private network endpointsDisabled
SmartScreen settings
ItemValue
Configure Microsoft Defender SmartScreenEnabled
Configure Microsoft Defender SmartScreen to block potentially unwanted appsEnabled
Prevent bypassing Microsoft Defender SmartScreen prompts for sitesEnabled
Prevent bypassing of Microsoft Defender SmartScreen warnings about downloadsEnabled

Do you have a suggestion on how the above page could be improved? Get in touch! ASD's Blueprint for Secure Cloud is an open source project, and we would love to get your input. Submit an issue on our GitHub, or send us an email at blueprint@asd.gov.au

Acknowledgement of Country icon

Acknowledgement of Country
We acknowledge the Traditional Owners and Custodians of Country throughout Australia and their continuing connections to land, sea and communities. We pay our respects to them, their cultures and their Elders; past, present and emerging. We also recognise Australia's First Peoples' enduring contribution to Australia's national security.

Authorised by the Australian Government, Canberra