Back

Configure the "Disable the Advanced Page" setting in limited functionality environments.


CONTROL ID
04367
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Configure Internet Browser security options according to organizational standards., CC ID: 02166

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • This setting, in conjunction with other settings, prevents users from changing settings configured in the Advanced tab of Internet Explorer. For Enterprise Client environments, the Internet Control Panel\Disable The Advanced Page setting is Not Configured. For Specialized Security - Limited Function… (Pg 103, Microsoft Windows Vista Security Guide Appendix A: Security Group Policy Settings)
  • The required setting for the TLS (Application) policy group is: TLS Restrict FIPS Ciphers. It should be set to True. See Appendix C for optional settings. (App C, DISA WIRELESS STIG BLACKBERRY SECURITY CHECKLIST, Version 5, Release 2.4, Version 5 Release 2.4)
  • The "Disable changing Advanced page settings" current user setting should be configured correctly. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing Advanced page settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Ex… (CCE-16919-3, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
  • This setting prevents users from changing settings under the Advanced tab of Internet Explorer. For Enterprise Client environments, the Internet Control Panel\Disable The Advanced Page setting is Not Configured. For Specialized Security - Limited Functionality environments, this setting should be En… (Pg 124, Pg 126, NSA Guide to Security Microsoft Windows XP)