Download
| Alert*
CCE-15923-6
The "Scripted Window Security Restrictions: Process List" machine setting should be configured correctly. CCE-16930-0 The "Set location of Stop and Refresh buttons" current user setting should be configured correctly. CCE-17109-0 The "Maximum number of connections per server (HTTP 1.0)" current user setting should be configured correctly. CCE-16057-2 The "Loose XAML files" current user setting should be configured correctly for the Intranet Zone. CCE-16867-4 The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16471-5 The "Scripting of Java applets" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16155-4 The "Java permissions" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15464-1 The "Turn on Protected Mode" current user setting should be configured correctly for the Intranet Zone. CCE-15211-6 The "Java permissions" current user setting should be configured correctly for the Internet Zone. CCE-15825-3 The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Internet Zone. CCE-15705-7 The "XAML browser applications" machine setting should be configured correctly for the Intranet Zone. CCE-16987-0 The "Turn on Protected Mode" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16022-6 The "Include updated Web site lists from Microsoft" current user setting should be configured correctly. CCE-15660-4 The "Pop-up allow list" machine setting should be configured correctly. CCE-16810-4 The "Disable toolbars and extensions when InPrivate Browsing starts" machine setting should be configured correctly. CCE-16614-0 The "Allow installation of desktop items" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-9792-3 The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16120-8 The "Intranet Sites: Include all local (intranet) sites not listed in other zones" current user setting should be configured correctly. CCE-16351-9 The "Turn off managing Pop-up filter level" current user setting should be configured correctly. CCE-16079-6 The "Disable changing accessibility settings" current user setting should be configured correctly. CCE-16240-4 The "Download signed ActiveX controls" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15901-2 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16747-8 The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Trusted Sites Zone. CCE-10434-9 The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Internet Zone. CCE-16177-8 The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-10380-4 The "Access data sources across domains" machine setting should be configured correctly for the Internet Zone. CCE-15803-0 The "Prevent ignoring certificate errors" current user setting should be configured correctly. CCE-16952-4 The "Auto-hide the Toolbars" current user setting should be configured correctly. CCE-15224-9 The "MSNBC" current user setting should be configured correctly. CCE-15682-8 The "Download signed ActiveX controls" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16044-0 The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Local Machine Zone. CCE-15958-2 The "Automatic prompting for file downloads" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16275-0 The "Maximum number of connections per server (HTTP 1.0)" machine setting should be configured correctly. CCE-17099-3 The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15727-1 The "Allow the printing of background colors and images" current user setting should be configured correctly. CCE-15629-9 The "XPS documents" machine setting should be configured correctly for the Internet Zone. CCE-16373-3 The "Allow Scriptlets" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-10630-2 The "Allow Scriptlets" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15780-0 The "Launching programs and unsafe files" machine setting should be configured correctly for the Intranet Zone. CCE-16142-2 The "Do not allow resetting Internet Explorer settings" machine setting should be configured correctly. CCE-10554-4 The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16262-8 The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Local Machine Zone. CCE-16307-1 The "Use SmartScreen Filter" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15322-1 The "Use SmartScreen Filter" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15157-1 The "Allow active content over restricted protocols to access my computer" current user setting should be configured correctly for the Local Machine Zone. CCE-15771-9 The "Scripting of Java applets" machine setting should be configured correctly for the Intranet Zone. CCE-17020-9 The "Set tab process growth" current user setting should be configured correctly. CCE-15575-4 The "Turn on Internet Explorer Standards Mode for Local Intranet" machine setting should be configured correctly. CCE-16623-1 The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Local Machine Zone. CCE-16209-9 The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16199-2 The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15255-3 The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16360-0 The "Turn off Crash Detection" current user setting should be configured correctly. CCE-15673-7 The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Intranet Zone. CCE-15891-5 The "XPS documents" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16480-6 The "Restrict ActiveX Install: Process List" machine setting should be configured correctly. CCE-16297-4 The "Locked-Down Local Machine Zone Template" current user setting should be configured correctly. CCE-16756-9 The "Turn off Reopen Last Browsing Session" current user setting should be configured correctly. CCE-16066-3 The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Intranet Zone. CCE-17077-9 The "Submit non-encrypted form data" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10393-7 The "Allow active scripting" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16854-2 The "Allow installation of desktop items" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16395-6 The "Deploy default Accelerators" machine setting should be configured correctly. CCE-15838-6 The "Display mixed content" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16427-7 The "Prevent Deleting Form Data" current user setting should be configured correctly. CCE-16658-7 The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Local Machine Zone. CCE-16164-6 The "InPrivate Filtering Threshold" machine setting should be configured correctly. CCE-16943-3 The "Download signed ActiveX controls" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16493-9 The "Turn on Protected Mode" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16031-7 The "Logon options" current user setting should be configured correctly for the Local Machine Zone. CCE-16284-2 The "Turn on automatic detection of the intranet" current user setting should be configured correctly. CCE-15344-5 The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15949-1 The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16601-7 The "Loose XAML files" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15793-3 The "XPS documents" machine setting should be configured correctly for the Intranet Zone. CCE-15233-0 The "Automatic prompting for file downloads" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16382-4 The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16503-5 The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16088-7 The "Disable changing secondary home page settings" current user setting should be configured correctly. CCE-16734-6 The "Allow file downloads" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15268-6 The "Display mixed content" machine setting should be configured correctly for the Internet Zone. CCE-16832-8 The "Allow font downloads" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15914-5 The "Binary Behavior Security Restriction: Process List" current user setting should be configured correctly. CCE-16186-9 The "Userdata persistence" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16405-3 The "Prevent Deleting Temporary Internet Files" current user setting should be configured correctly. CCE-16965-6 The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15816-2 The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15215-7 The "Allow Scriptlets" current user setting should be configured correctly for the Local Machine Zone. CCE-16222-2 The "Access data sources across domains" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15882-4 The "Disable .NET Framework Setup" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15927-7 The "Tools menu: Disable Internet Options... menu option" current user setting should be configured correctly. CCE-16159-6 The "Java permissions" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15829-5 The "Turn on Information bar notification for intranet content" machine setting should be configured correctly. CCE-17007-6 The "Disable Per-User Installation of ActiveX Controls" current user setting should be configured correctly. CCE-15980-6 The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15709-9 The "Allow file downloads" machine setting should be configured correctly for the Local Machine Zone. CCE-16573-8 The "Turn off automatic image resizing" current user setting should be configured correctly. CCE-16320-4 The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16440-0 The "Protection From Zone Elevation: Process List" current user setting should be configured correctly. CCE-17180-1 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15762-8 The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Intranet Zone. CCE-16355-0 The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16124-0 The "Local Machine Zone Template" current user setting should be configured correctly. CCE-16257-8 The "Scripting of Java applets" machine setting should be configured correctly for the Local Machine Zone. CCE-16026-7 The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15860-0 The "Hide the Status Bar" machine setting should be configured correctly. CCE-16244-6 The "Maximum number of connections per server (HTTP 1.1)" machine setting should be configured correctly. CCE-16453-3 The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15905-3 The "File menu: Disable Save As Web Page Complete" current user setting should be configured correctly. CCE-15300-7 The "Software channel permissions" machine setting should be configured correctly for the Intranet Zone. CCE-16342-8 The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16956-5 The "Hide the Command Bar" current user setting should be configured correctly. CCE-15807-1 The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16551-4 The "Add-on Management: Process List" machine setting should be configured correctly. CCE-16048-1 The "Submit non-encrypted form data" current user setting should be configured correctly for the Trusted Sites Zone. CCE-17095-1 The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Restricted Sites Zone. CCE-9489-6 The "Use SmartScreen Filter" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-17238-7 The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10403-4 The "Allow font downloads" machine setting should be configured correctly for the Internet Zone. CCE-16146-3 The "Allow binary and script behaviors" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15784-2 The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Intranet Zone. CCE-10634-4 The "Disable Periodic Check For Internet Explorer Software Updates" setting should be configured correctly. CCE-14934-4 The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Intranet Zone. CCE-16377-4 The "Allow active scripting" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15228-0 The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15686-9 The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Internet Zone. CCE-16921-9 The "Add-on Management: All Processes" machine setting should be configured correctly. CCE-16013-5 The "Launching programs and unsafe files" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16680-1 The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Local Machine Zone. CCE-10095-8 The "Download signed ActiveX controls" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16364-2 The "Prevent performance of First Run Customize settings" current user setting should be configured correctly. CCE-15775-0 The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Intranet Zone. CCE-16627-2 The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16111-7 The "Intranet Zone Template" current user setting should be configured correctly. CCE-16266-9 The "Logon options" machine setting should be configured correctly for the Local Machine Zone. CCE-16725-4 The "Turn off ClearType" current user setting should be configured correctly. CCE-9917-6 The "Download signed ActiveX controls" machine setting should be configured correctly for the Internet Zone. CCE-17118-1 The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15202-5 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Internet Zone. CCE-10291-3 The "Turn on the auto-complete feature for user names and passwords on forms" current user setting should be configured correctly. CCE-15993-9 The "Allow active scripting" machine setting should be configured correctly for the Internet Zone. CCE-10105-5 The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16399-8 The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16858-3 The "Disable the Content page" machine setting should be configured correctly. CCE-16168-7 The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-17073-8 The "Access data sources across domains" current user setting should be configured correctly for the Restricted Sites Zone. CCE-10425-7 The "Software channel permissions" machine setting should be configured correctly for the Internet Zone. CCE-16947-4 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15895-6 The "Internet Zone Restricted Protocols" machine setting should be configured correctly. CCE-15620-8 The "Software channel permissions" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15446-8 The "Java permissions" current user setting should be configured correctly for the Local Machine Zone. CCE-16288-3 The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-17086-0 The "Disable changing color settings" current user setting should be configured correctly. CCE-16801-3 The "Play sounds in web pages" current user setting should be configured correctly. CCE-16133-1 The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Trusted Sites Zone. CCE-14943-5 The "Disable .NET Framework Setup" machine setting should be configured correctly for the Intranet Zone. CCE-16386-5 The "Turn on Protected Mode" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15348-6 The "Use SmartScreen Filter" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16605-8 The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15237-1 The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Local Machine Zone. CCE-16035-8 The "Allow active scripting" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16595-1 The "Userdata persistence" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15699-2 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Local Machine Zone. CCE-16703-1 The "Disable the Content page" current user setting should be configured correctly. CCE-15642-2 The "Allow file downloads" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16231-3 The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16000-2 The "Microsoft Survey Control" current user setting should be configured correctly. CCE-15873-3 The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16738-7 The "Allow active content over restricted protocols to access my computer" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16507-6 The "Allow Scriptlets" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15918-6 The "View menu: Disable Full Screen menu option" current user setting should be configured correctly. CCE-16462-4 The "Scripted Window Security Restrictions: Internet Explorer Processes" current user setting should be configured correctly. CCE-16693-4 The "Allow Scriptlets" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15971-5 The "Access data sources across domains" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16969-8 The "Use large Icons for Command Buttons" current user setting should be configured correctly. CCE-16791-6 The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16409-5 The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16560-5 The "Open files based on content, not file extension" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16577-9 The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16226-3 The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16324-6 The "Information Bar: Internet Explorer Processes" machine setting should be configured correctly. CCE-16893-0 The "Turn off page zooming functionality" current user setting should be configured correctly. CCE-17003-5 The "Turn on menu bar by default" current user setting should be configured correctly. CCE-15754-5 The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15558-0 The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16640-5 The "Automatic prompting for file downloads" machine setting should be configured correctly for the Local Machine Zone. CCE-16479-8 The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15305-6 The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Internet Zone. CCE-10594-0 The "Turn off Crash Detection" machine setting should be configured correctly. CCE-15403-9 The "Customize User Agent String" machine setting should be configured correctly. CCE-15295-9 The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Intranet Zone. CCE-16938-3 The "MK Protocol Security Restriction: Internet Explorer Processes" current user setting should be configured correctly. CCE-10604-7 The "Scripted Window Security Restrictions: Internet Explorer Processes" machine setting should be configured correctly. CCE-16818-7 The "Customize User Agent String" current user setting should be configured correctly. CCE-15874-1 The "Hide the Command Bar" machine setting should be configured correctly. CCE-16083-8 The "Logon options" current user setting should be configured correctly for the Internet Zone. CCE-10461-2 The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16444-2 The "Scripting of Java applets" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15140-7 The "Investor" current user setting should be configured correctly. CCE-15789-1 The "Configure new tab page default behavior" machine setting should be configured correctly. CCE-10145-1 The "Use SmartScreen Filter" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16128-1 The "Information Bar: Internet Explorer Processes" current user setting should be configured correctly. CCE-15972-3 The "Lock all Toolbars" machine setting should be configured correctly. CCE-16359-2 The "XAML browser applications" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16181-0 The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16555-5 The "File size limits for Internet zone" current user setting should be configured correctly. CCE-15776-8 The "File size limits for Trusted Sites zone" current user setting should be configured correctly. CCE-15985-5 The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16346-9 The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15327-0 The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16457-4 The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16248-7 The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Intranet Zone. CCE-15887-3 The "Trusted Sites Zone Template" current user setting should be configured correctly. CCE-15678-6 The "Userdata persistence" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16520-9 The "Use Pop-up Blocker" current user setting should be configured correctly for the Trusted Sites Zone. CCE-10581-7 The "Automatically check for Internet Explorer updates" machine setting should be configured correctly. CCE-15950-9 The "Turn off Developer Tools" machine setting should be configured correctly. CCE-16880-7 The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16653-8 The "Consistent Mime Handling: Process List" machine setting should be configured correctly. CCE-14930-2 The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Intranet Zone. CCE-16422-8 The "Allow active scripting" current user setting should be configured correctly for the Intranet Zone. CCE-15852-7 The "Loose XAML files" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16925-0 The "Turn off sending URLs as UTF-8 (requires restart)" current user setting should be configured correctly. CCE-15621-6 The "Allow installation of desktop items" machine setting should be configured correctly for the Intranet Zone. CCE-16827-8 The "Turn off ClearType" machine setting should be configured correctly. CCE-10389-5 The "Automatic prompting for file downloads" machine setting should be configured correctly for the Internet Zone. CCE-16115-8 The "Display mixed content" current user setting should be configured correctly for the Intranet Zone. CCE-16070-5 The "NetShow File Transfer Control" current user setting should be configured correctly. CCE-17247-8 The "Download signed ActiveX controls" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15710-7 The "Userdata persistence" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16431-9 The "Access data sources across domains" current user setting should be configured correctly for the Intranet Zone. CCE-16729-6 The "Allow META REFRESH" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15963-2 The "Allow binary and script behaviors" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16368-3 The "Allow META REFRESH" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15865-9 The "Internet Zone Template" current user setting should be configured correctly. CCE-16017-6 The "Allow font downloads" current user setting should be configured correctly for the Internet Zone. CCE-16782-5 The "Allow META REFRESH" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15612-5 The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Intranet Zone. CCE-16190-1 The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16213-1 The "Allow font downloads" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15371-8 The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15318-9 The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16311-3 The "Allow Scriptlets" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16488-9 The "Disable the General page" machine setting should be configured correctly. CCE-9779-0 The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Internet Zone. CCE-15647-1 The "Submit non-encrypted form data" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16586-0 The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16039-0 The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15941-8 The "Loose XAML files" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-10470-3 The "Download signed ActiveX controls" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16805-4 The "Local Machine Zone Template" machine setting should be configured correctly. CCE-10515-5 The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Internet Zone. CCE-17082-9 The "Turn off configuration of default behavior of new tab creation" current user setting should be configured correctly. CCE-17225-4 The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16662-9 The "Restricted Sites Zone Restricted Protocols" current user setting should be configured correctly. CCE-15732-1 The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16137-2 The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16916-9 The "Use HTTP 1.1" current user setting should be configured correctly. CCE-16092-9 The "Logon options" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16200-8 The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16599-3 The "Disable the Programs page" current user setting should be configured correctly. CCE-16707-2 The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Local Machine Zone. CCE-15634-9 The "Allow file downloads" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16004-4 The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15393-2 The "Open files based on content, not file extension" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15438-5 The "Display mixed content" current user setting should be configured correctly for the Internet Zone. CCE-16564-7 The "Software channel permissions" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16235-4 The "XPS documents" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16333-7 The "Download signed ActiveX controls" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16466-5 The "XPS documents" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15767-7 The "Use Pop-up Blocker" machine setting should be configured correctly for the Intranet Zone. CCE-15162-1 The "Disable .NET Framework Setup" current user setting should be configured correctly for the Local Machine Zone. CCE-15998-8 The "Submit non-encrypted form data" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16102-6 The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Intranet Zone. CCE-16030-9 The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16328-7 The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Intranet Zone. CCE-16742-9 The "Turn on Caret Browsing support" current user setting should be configured correctly. CCE-15362-7 The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15758-6 The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Intranet Zone. CCE-16897-1 The "Prevent "Fix settings" functionality" current user setting should be configured correctly. CCE-15505-1 The "Allow Scriptlets" current user setting should be configured correctly for the Internet Zone. CCE-16644-7 The "Locked-Down Intranet Zone Template" machine setting should be configured correctly. CCE-16381-6 The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16840-1 The "Disable Import/Export Settings wizard" current user setting should be configured correctly. CCE-15309-8 The "Allow binary and script behaviors" machine setting should be configured correctly for the Internet Zone. CCE-15460-9 The "Allow active content over restricted protocols to access my computer" current user setting should be configured correctly for the Intranet Zone. CCE-10319-2 The "Java permissions" machine setting should be configured correctly for the Local Machine Zone. CCE-16087-9 The "Consistent Mime Handling: Process List" current user setting should be configured correctly. CCE-16546-4 The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15976-4 The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-17252-8 The "Userdata persistence" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10696-3 The "Java permissions" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16679-3 The "Turn off Compatibility View button" current user setting should be configured correctly. CCE-16448-3 The "XPS documents" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16185-1 The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15878-2 The "Empty Temporary Internet Files folder when browser is closed" machine setting should be configured correctly. CCE-15242-1 The "Prevent Deleting Form Data" machine setting should be configured correctly. CCE-9504-2 The "Disable Per-User Installation of ActiveX Controls" machine setting should be configured correctly. CCE-15603-4 The "Turn on Protected Mode" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15989-7 The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Local Machine Zone. CCE-16559-7 The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Local Machine Zone. CCE-15277-7 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Internet Zone. CCE-16052-3 The "Hide Favorites menu" current user setting should be configured correctly. CCE-16622-3 The "Logon options" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15482-3 The "Object Caching Protection: Process List" machine setting should be configured correctly. CCE-16150-5 The "Scripting of Java applets" machine setting should be configured correctly for the Internet Zone. CCE-16720-5 The "Allow third-party browser extensions" current user setting should be configured correctly. CCE-16982-1 The "MK Protocol Security Restriction: All Processes" current user setting should be configured correctly. CCE-15954-1 The "Allow META REFRESH" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15580-4 The "Allow META REFRESH" machine setting should be configured correctly for the Intranet Zone. CCE-16426-9 The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16657-9 The "Restricted Sites Zone Template" machine setting should be configured correctly. CCE-15220-7 The "Access data sources across domains" current user setting should be configured correctly for the Internet Zone. CCE-16524-1 The "File size limits for Local Machine zone" current user setting should be configured correctly. CCE-15714-9 The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Intranet Zone. CCE-15153-0 The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Local Machine Zone. CCE-16074-7 The "Microsoft Scriptlet Component" current user setting should be configured correctly. CCE-16435-0 The "Java permissions" current user setting should be configured correctly for the Intranet Zone. CCE-15967-3 The "Allow active content over restricted protocols to access my computer" machine setting should be configured correctly for the Local Machine Zone. CCE-17243-7 The "Allow installation of desktop items" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15616-6 The "Audio/Video Player" current user setting should be configured correctly. CCE-16688-4 The "Turn off smart image dithering" current user setting should be configured correctly. CCE-16119-0 The "Allow font downloads" current user setting should be configured correctly for the Intranet Zone. CCE-16172-9 The "Locked-Down Internet Zone Template" current user setting should be configured correctly. CCE-10550-2 The "Disable the Security page" machine setting should be configured correctly. CCE-15869-1 The "Restrict ActiveX Install: All Processes" current user setting should be configured correctly. CCE-16533-2 The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16951-6 The "Allow file downloads" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15932-7 The "Allow software to run or install even if the signature is invalid" current user setting should be configured correctly. CCE-15749-5 The "Set tab process growth" machine setting should be configured correctly. CCE-15518-4 The "Allow status bar updates via script" current user setting should be configured correctly for the Internet Zone. CCE-16270-1 The "Submit non-encrypted form data" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16631-4 The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-17012-6 The "Disable changing font settings" current user setting should be configured correctly. CCE-15286-8 The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Intranet Zone. CCE-16217-2 The "Use Pop-up Blocker" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16511-8 The "Only use the ActiveX Installer Service for installation of ActiveX Controls" current user setting should be configured correctly. CCE-16809-6 The "Logon options" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15945-9 The "Set location of Stop and Refresh buttons" machine setting should be configured correctly. CCE-16204-0 The "Allow Scriptlets" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15736-2 The "Open files based on content, not file extension" machine setting should be configured correctly for the Intranet Zone. CCE-10110-5 The "Prevent Deleting Web sites that the User has Visited" machine setting should be configured correctly. CCE-16666-0 The "Turn off Compatibility View" current user setting should be configured correctly. CCE-15847-7 The "Allow active scripting" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16862-5 The "Disable the Programs page" machine setting should be configured correctly. CCE-17025-8 The "Enforce Full Screen Mode" current user setting should be configured correctly. CCE-16096-0 The "Allow status bar updates via script" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-10265-7 The "MK Protocol Security Restriction: Internet Explorer Processes" machine setting should be configured correctly. CCE-16194-3 The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16302-2 The "Information Bar: All Processes" machine setting should be configured correctly. CCE-15638-0 The "Allow META REFRESH" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16568-8 The "Protection From Zone Elevation: Internet Explorer Processes" current user setting should be configured correctly. CCE-16337-8 The "Restrict File Download: Internet Explorer Processes" current user setting should be configured correctly. CCE-15910-3 The "Prevent users from choosing default text size" current user setting should be configured correctly. CCE-16061-4 The "MK Protocol Security Restriction: Process List" current user setting should be configured correctly. CCE-15397-3 The "Turn on menu bar by default" machine setting should be configured correctly. CCE-16106-7 The "Turn off tabbed browsing" machine setting should be configured correctly. CCE-15812-1 The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15264-5 The "Information Bar: Process List" current user setting should be configured correctly. CCE-16239-6 The "Mime Sniffing Safety Feature: All Processes" current user setting should be configured correctly. CCE-16390-7 The "Allow file downloads" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16008-5 The "Access data sources across domains" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15441-9 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Trusted Sites Zone. CCE-16287-5 The "Locked-Down Restricted Sites Zone Template" current user setting should be configured correctly. CCE-15739-6 The "Turn on the Internet Connection Wizard Auto Detect" current user setting should be configured correctly. CCE-15900-4 The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16034-1 The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Local Machine Zone. CCE-15596-0 The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16844-3 The "Loose XAML files" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10642-7 The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16132-3 The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Intranet Zone. CCE-16385-7 The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Intranet Zone. CCE-16648-8 The "Consistent Mime Handling: All Processes" machine setting should be configured correctly. CCE-15694-3 The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15802-2 The "Allow binary and script behaviors" machine setting should be configured correctly for the Intranet Zone. CCE-16999-5 The "Disable changing home page settings" current user setting should be configured correctly. CCE-15080-5 The "Display mixed content" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16230-5 The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-9814-5 The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15957-4 The "Use Pop-up Blocker" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16189-3 The "Display mixed content" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15223-1 The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Internet Zone. CCE-15859-2 The "Launching programs and unsafe files" current user setting should be configured correctly for the Intranet Zone. CCE-15508-5 The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: All Processes" machine setting should be configured correctly. CCE-16056-4 The "Check for signatures on downloaded programs" current user setting should be configured correctly. CCE-16154-7 The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16626-4 The "Disable caching of Auto-Proxy scripts" current user setting should be configured correctly. CCE-10664-1 The "Allow META REFRESH" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15463-3 The "Logon options" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16724-7 The "Use Pop-up Blocker" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16021-8 The "Open files based on content, not file extension" current user setting should be configured correctly for the Trusted Sites Zone. CCE-10566-8 The "Java permissions" machine setting should be configured correctly for the Intranet Zone. CCE-15890-7 The "Local Machine Zone Restricted Protocols" machine setting should be configured correctly. CCE-15201-7 The "Download signed ActiveX controls" current user setting should be configured correctly for the Internet Zone. CCE-15935-0 The "Loose XAML files" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15704-0 The "Turn off Favorites bar" machine setting should be configured correctly. CCE-17030-8 The "Moving the menu bar above the navigation bar" current user setting should be configured correctly. CCE-16857-5 The "Allow binary and script behaviors" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15837-8 The "Allow font downloads" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16581-1 The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16078-8 The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Internet Zone. CCE-16537-3 The "XPS documents" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15489-8 The "Allow font downloads" machine setting should be configured correctly for the Intranet Zone. CCE-17043-1 The "Prevent Internet Explorer Search box from displaying" current user setting should be configured correctly. CCE-16492-1 The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15948-3 The "Scripting of Java applets" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16590-2 The "Disable customizing browser toolbars" current user setting should be configured correctly. CCE-16439-2 The "Trusted Sites Zone Template" machine setting should be configured correctly. CCE-16600-9 The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-17141-3 The "Allow META REFRESH" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10433-1 The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Internet Zone. CCE-16176-0 The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16319-6 The "Turn on Protected Mode" machine setting should be configured correctly for the Local Machine Zone. CCE-16274-3 The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15685-1 The "Prevent the use of Windows colors" current user setting should be configured correctly. CCE-16733-8 The "Allow font downloads" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16920-1 The "Play animations in web pages" current user setting should be configured correctly. CCE-15036-7 The "Allow installation of desktop items" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16043-2 The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15913-7 The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Intranet Zone. CCE-15783-4 The "Launching programs and unsafe files" current user setting should be configured correctly for the Internet Zone. CCE-16372-5 The "Turn off Cross Document Messaging" machine setting should be configured correctly. CCE-16404-6 The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Local Machine Zone. CCE-16635-5 The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16831-0 The "Turn off the activation of the quick pick menu" current user setting should be configured correctly. CCE-16141-4 The "Allow file downloads" machine setting should be configured correctly for the Internet Zone. CCE-15356-9 The "Allow installation of desktop items" current user setting should be configured correctly for the Internet Zone. CCE-15815-4 The "Site to Zone Assignment List" machine setting should be configured correctly. CCE-16306-3 The "Locked-Down Intranet Zone Template" current user setting should be configured correctly. CCE-15881-6 The "Restrict File Download: All Processes" machine setting should be configured correctly. CCE-16261-0 The "XAML browser applications" current user setting should be configured correctly for the Intranet Zone. CCE-15926-9 The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-17021-7 The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16515-9 The "Prevent users from configuring the color of links that have already been clicked" current user setting should be configured correctly. CCE-15717-2 The "Auto-hide the Toolbars" machine setting should be configured correctly. CCE-15574-7 The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16198-4 The "Allow META REFRESH" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15770-1 The "Userdata persistence" machine setting should be configured correctly for the Local Machine Zone. CCE-15828-7 The "Turn on automatic detection of the intranet" machine setting should be configured correctly. CCE-15619-0 The "Use SmartScreen Filter" machine setting should be configured correctly for the Intranet Zone. CCE-16208-1 The "Open files based on content, not file extension" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16879-9 The "Turn off Accelerators" current user setting should be configured correctly. CCE-16417-8 The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16977-1 The "Turn off Tab Grouping" current user setting should be configured correctly. CCE-16065-5 The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16296-6 The "Software channel permissions" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-17078-7 The "Software channel permissions" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15378-3 The "DHTML Edit Control" current user setting should be configured correctly. CCE-16163-8 The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Local Machine Zone. CCE-16613-2 The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-10651-8 The "Logon options" machine setting should be configured correctly for the Restricted Sites Zone. CCE-14959-1 The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Intranet Zone. CCE-16394-9 The "Turn off the XDomainRequest Object" machine setting should be configured correctly. CCE-10829-0 The "Disable external branding of Internet Explorer" current user setting should be configured correctly. CCE-15476-5 The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Intranet Zone. CCE-10420-8 The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16711-4 The "Deny all add-ons unless specifically allowed in the Add-on List" current user setting should be configured correctly. CCE-16038-2 The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Trusted Sites Zone. CCE-10744-1 The "Launching programs and unsafe files" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16848-4 The "Use Policy Accelerators" current user setting should be configured correctly. CCE-16389-9 The "Admin-approved behaviors" machine setting should be configured correctly. CCE-16452-5 The "Automatic prompting for file downloads" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15904-6 The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15084-7 The "Logon options" machine setting should be configured correctly for the Intranet Zone. CCE-16136-4 The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Internet Zone. CCE-15347-8 The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Internet Zone. CCE-10646-8 The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Internet Zone. CCE-15641-4 The "Allow active content over restricted protocols to access my computer" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16003-6 The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Local Machine Zone. CCE-16332-9 The "Restrict File Download: All Processes" current user setting should be configured correctly. CCE-16101-8 The "Microsoft Agent" current user setting should be configured correctly. CCE-15280-1 The "Scripting of Java applets" current user setting should be configured correctly for the Internet Zone. CCE-16234-7 The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15410-4 The "Turn on Automatic Signup" current user setting should be configured correctly. CCE-16221-4 The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16683-5 The "Prevent setting of the code download path for each machine" machine setting should be configured correctly. CCE-15369-2 The "Disable .NET Framework Setup" machine setting should be configured correctly for the Trusted Sites Zone. CCE-9760-0 The "Userdata persistence" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16430-1 The "Open files based on content, not file extension" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16158-8 The "Intranet Sites: Include all local (intranet) sites not listed in other zones" machine setting should be configured correctly. CCE-16826-0 The "Loose XAML files" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-17008-4 The "Do not allow users to enable or disable add-ons" current user setting should be configured correctly. CCE-10415-8 The "Disable Save this program to disk option" current user setting should be configured correctly. CCE-10094-1 The "Use Pop-up Blocker" machine setting should be configured correctly for the Restricted Sites Zone. CCE-9599-2 The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16487-1 The "Add a specific list of search providers to the user's search provider list" current user setting should be configured correctly. CCE-15432-8 The "Open files based on content, not file extension" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16256-0 The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15708-1 The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Local Machine Zone. CCE-15939-2 The "XPS documents" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15565-5 The "Use Pop-up Blocker" current user setting should be configured correctly for the Local Machine Zone. CCE-15992-1 The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16123-2 The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Internet Zone. CCE-16354-3 The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15761-0 The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Local Machine Zone. CCE-15894-9 The "Allow file downloads" machine setting should be configured correctly for the Intranet Zone. CCE-16025-9 The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Local Machine Zone. CCE-10535-3 The "Java permissions" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16496-2 The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16243-8 The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15752-9 The "Automatic prompting for file downloads" current user setting should be configured correctly for the Local Machine Zone. CCE-16800-5 The "Locked-Down Restricted Sites Zone Template" machine setting should be configured correctly. CCE-16604-1 The "Disable the General page" current user setting should be configured correctly. CCE-16959-9 The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16702-3 The "Download signed ActiveX controls" machine setting should be configured correctly for the Local Machine Zone. CCE-16341-0 The "Add-on Management: Process List" current user setting should be configured correctly. CCE-15872-5 The "Play animations in web pages" machine setting should be configured correctly. CCE-16278-4 The "Allow file downloads" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15917-8 The "Restrict search providers to a specific list of providers" machine setting should be configured correctly. CCE-15970-7 The "Launching programs and unsafe files" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16737-9 The "Download signed ActiveX controls" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16506-8 The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16461-6 The "Disable the Security page" current user setting should be configured correctly. CCE-15787-5 The "Software channel permissions" current user setting should be configured correctly for the Local Machine Zone. CCE-16692-6 The "Network Protocol Lockdown: Internet Explorer Processes" current user setting should be configured correctly. CCE-16145-5 The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Internet Zone. CCE-15819-6 The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Intranet Zone. CCE-16376-6 The "Binary Behavior Security Restriction: Internet Explorer Processes" machine setting should be configured correctly. CCE-16639-7 The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16408-7 The "Software channel permissions" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15689-3 The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16012-7 The "Allow active scripting" machine setting should be configured correctly for the Local Machine Zone. CCE-16265-1 The "XAML browser applications" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16519-1 The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15983-0 The "Allow installation of desktop items" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16363-4 The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15578-8 The "Allow Scriptlets" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16110-9 The "Launching programs and unsafe files" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-10620-3 The "Java permissions" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16474-9 The "Disable changing proxy settings" current user setting should be configured correctly. CCE-15885-7 The "Locked-Down Internet Zone Template" machine setting should be configured correctly. CCE-15850-1 The "Allow font downloads" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-10522-1 The "Prevent participation in the Customer Experience Improvement Program" machine setting should be configured correctly. CCE-16670-2 The "Network Protocol Lockdown: Process List" current user setting should be configured correctly. CCE-16813-8 The "Disable changing Messaging settings" current user setting should be configured correctly. CCE-9982-0 The "Allow font downloads" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16167-9 The "Launching programs and unsafe files" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16398-0 The "Allow META REFRESH" current user setting should be configured correctly for the Intranet Zone. CCE-16617-3 The "Access data sources across domains" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16069-7 The "Allow file downloads" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-17124-9 The "Allow META REFRESH" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16554-8 The "Disable the Privacy page" current user setting should be configured correctly. CCE-15984-8 The "Allow status bar updates via script" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15219-9 The "Access data sources across domains" machine setting should be configured correctly for the Intranet Zone. CCE-9667-7 The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16095-2 The "Allow status bar updates via script" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16193-5 The "Scripting of Java applets" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16301-4 The "Intranet Sites: Include all sites that bypass the proxy server" current user setting should be configured correctly. CCE-15886-5 The "Scripted Window Security Restrictions: Process List" current user setting should be configured correctly. CCE-16915-1 The "Prevent Bypassing SmartScreen Filter Warnings" current user setting should be configured correctly. CCE-16060-6 The "Turn off Reopen Last Browsing Session" machine setting should be configured correctly. CCE-16652-0 The "Use Policy List of Internet Explorer 7 sites" current user setting should be configured correctly. CCE-15766-9 The "XAML browser applications" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16291-7 The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16421-0 The "Information Bar: Process List" machine setting should be configured correctly. CCE-9898-8 The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16105-9 The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15076-3 The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15339-5 The "Allow installation of desktop items" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15668-7 The "Allow font downloads" current user setting should be configured correctly for the Local Machine Zone. CCE-16007-7 The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16336-0 The "Prevent configuration of search from the Address bar" current user setting should be configured correctly. CCE-16238-8 The "Software channel permissions" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15851-9 The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-10037-0 The "Security Zones: Do not allow users to change policies" machine setting should be configured correctly. CCE-16785-8 The "Turn on Internet Explorer Standards Mode for Local Intranet" current user setting should be configured correctly. CCE-10701-1 The "Turn off page transitions" current user setting should be configured correctly. CCE-15864-2 The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16323-8 The "Restrict File Download: Process List" current user setting should be configured correctly. CCE-16990-4 The "Send internationalized domain names" machine setting should be configured correctly. CCE-15909-5 The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15962-4 The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Trusted Sites Zone. CCE-10388-7 The "Disable AutoComplete for forms" current user setting should be configured correctly. CCE-16434-3 The "Allow status bar updates via script" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15753-7 The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Intranet Zone. CCE-9885-5 The "Turn off InPrivate Browsing" machine setting should be configured correctly. CCE-15500-2 The "Access data sources across domains" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15304-9 The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16225-5 The "Turn on Protected Mode" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10603-9 The "Include updated Web site lists from Microsoft" machine setting should be configured correctly. CCE-15655-4 The "Add a specific list of search providers to the user's search provider list" machine setting should be configured correctly. CCE-16029-1 The "Allow active scripting" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16358-4 The "Userdata persistence" current user setting should be configured correctly for the Intranet Zone. CCE-16630-6 The "Intranet Sites: Include all sites that bypass the proxy server" machine setting should be configured correctly. CCE-16082-0 The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16902-9 The "Turn off tabbed browsing" current user setting should be configured correctly. CCE-16127-3 The "Allow file downloads" current user setting should be configured correctly for the Internet Zone. CCE-10638-5 The "Disable changing Automatic Configuration settings" machine setting should be configured correctly. CCE-16180-2 The "Allow status bar updates via script" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-10002-4 The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Internet Zone. CCE-15428-6 The "Allow installation of desktop items" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16661-1 The "Turn off Data URI Support" machine setting should be configured correctly. CCE-15779-2 The "Turn off smooth scrolling" current user setting should be configured correctly. CCE-10625-2 The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Internet Zone. CCE-16345-1 The "Allow Scriptlets" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16598-5 The "Disable the Connections page" machine setting should be configured correctly. CCE-15940-0 The "Empty Temporary Internet Files folder when browser is closed" current user setting should be configured correctly. CCE-15842-8 The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-17092-8 The "Submit non-encrypted form data" current user setting should be configured correctly for the Restricted Sites Zone. CCE-10211-1 The "Use SmartScreen Filter" machine setting should be configured correctly for the Local Machine Zone. CCE-16981-3 The "Use UTF-8 for mailto links" machine setting should be configured correctly. CCE-16839-3 The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15722-2 The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16149-7 The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Internet Zone. CCE-15997-0 The "Allow file downloads" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16696-7 The "Network Protocol Lockdown: All Processes" current user setting should be configured correctly. CCE-16928-4 The "Turn off InPrivate Filtering" machine setting should be configured correctly. CCE-16465-7 The "XPS documents" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16794-0 The "Turn off Favorites bar" current user setting should be configured correctly. CCE-15899-8 The "Allow Scriptlets" machine setting should be configured correctly for the Intranet Zone. CCE-16269-3 The "Add-on List" machine setting should be configured correctly. CCE-15196-9 The "Allow active scripting" current user setting should be configured correctly for the Local Machine Zone. CCE-16478-0 The "Disable changing default browser check" current user setting should be configured correctly. CCE-16114-1 The "Use Pop-up Blocker" current user setting should be configured correctly for the Intranet Zone. CCE-16367-5 The "Mime Sniffing Safety Feature: Internet Explorer Processes" current user setting should be configured correctly. CCE-15820-4 The "Turn on Protected Mode" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16576-1 The "Use SmartScreen Filter" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16016-8 The "XAML browser applications" machine setting should be configured correctly for the Local Machine Zone. CCE-16817-9 The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16212-3 The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15370-0 The "Access data sources across domains" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16443-4 The "Admin-approved behaviors" current user setting should be configured correctly. CCE-15513-5 The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15975-6 The "Use Pop-up Blocker" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16674-4 The "Turn on Internet Explorer 7 Standards Mode" current user setting should be configured correctly. CCE-16091-1 The "Turn on Compatibility Logging" current user setting should be configured correctly. CCE-15317-1 The "Scripting of Java applets" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16719-7 The "Software channel permissions" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15877-4 The "Use HTTP 1.1 through proxy connections" machine setting should be configured correctly. CCE-16541-5 The "Protection From Zone Elevation: All Processes" current user setting should be configured correctly. CCE-16310-5 The "Locked-Down Trusted Sites Zone Template" current user setting should be configured correctly. CCE-15646-3 The "Logon options" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15988-9 The "Turn on Protected Mode" current user setting should be configured correctly for the Local Machine Zone. CCE-16972-2 The "Allow binary and script behaviors" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16305-5 The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15690-1 The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16874-0 The "Deploy default Accelerators" current user setting should be configured correctly. CCE-15735-4 The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Intranet Zone. CCE-16260-2 The "Turn off Data URI Support" current user setting should be configured correctly. CCE-16621-5 The "Automatic prompting for file downloads" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16919-3 The "Disable changing Advanced page settings" current user setting should be configured correctly. CCE-9867-3 The "Use SmartScreen Filter" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16197-6 The "Submit non-encrypted form data" current user setting should be configured correctly for the Internet Zone. CCE-16099-4 The "Loose XAML files" current user setting should be configured correctly for the Local Machine Zone. CCE-16207-3 The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15637-2 The "Restricted Sites Zone Template" current user setting should be configured correctly. CCE-10055-2 The "Check for signatures on downloaded programs" machine setting should be configured correctly. CCE-16295-8 The "Disable changing connection settings" current user setting should be configured correctly. CCE-16754-4 The "Turn on the display of a notification about every script error" current user setting should be configured correctly. CCE-16064-8 The "XPS documents" current user setting should be configured correctly for the Local Machine Zone. CCE-15855-0 The "Disable toolbars and extensions when InPrivate Browsing starts" current user setting should be configured correctly. CCE-10540-3 The "Turn off Managing Phishing Filter" setting should be configured correctly. CCE-17079-5 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Restricted Sites Zone. CCE-15953-3 The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Local Machine Zone. CCE-16109-1 The "Allow status bar updates via script" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16425-1 The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15539-0 The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16656-1 The "Turn off Data Execution Prevention" machine setting should be configured correctly. CCE-16852-6 The "Deploy non-default Accelerators" current user setting should be configured correctly. CCE-15494-8 The "Configure Delete Browsing History on exit" machine setting should be configured correctly. CCE-16162-0 The "Local Machine Zone Lockdown Security: All Processes" machine setting should be configured correctly. CCE-16393-1 The "Turn off page zooming functionality" machine setting should be configured correctly. CCE-17177-7 The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-9987-9 The "Disable Automatic Install of Internet Explorer components" setting should be configured correctly. CCE-16327-9 The "Mime Sniffing Safety Feature: Process List" machine setting should be configured correctly. CCE-15757-8 The "Access data sources across domains" current user setting should be configured correctly for the Local Machine Zone. CCE-16282-6 The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Trusted Sites Zone. CCE-10033-9 The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Internet Zone. CCE-10597-3 The "Java permissions" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-9889-7 The "Prevent Deleting Temporary Internet Files" machine setting should be configured correctly. CCE-15966-5 The "Access data sources across domains" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16491-3 The "Restrict ActiveX Install: Process List" current user setting should be configured correctly. CCE-16380-8 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10607-0 The "Turn off the Security Settings Check feature" machine setting should be configured correctly. CCE-15254-6 The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Internet Zone. CCE-16789-0 The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15868-3 The "Submit non-encrypted form data" current user setting should be configured correctly for the Intranet Zone. CCE-16229-7 The "Allow installation of desktop items" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16994-6 The "Turn off suggestions for all user-installed providers" current user setting should be configured correctly. CCE-10816-7 DEPRECATED. Previously: The "Turn on the Internet Connection Wizard Auto Detect" setting should be configured correctly. Note: According to Microsoft, does not apply to IE 8. CCE-15931-9 The "XAML browser applications" current user setting should be configured correctly for the Internet Zone. CCE-16501-9 The "Loose XAML files" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16086-1 The "Open files based on content, not file extension" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-9832-7 The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16403-8 The "Access data sources across domains" machine setting should be configured correctly for the Local Machine Zone. CCE-16830-2 The "Allow status bar updates via script" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16634-8 The "Userdata persistence" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16184-4 The "Java permissions" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16732-0 The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10464-6 The "Disable changing proxy settings" machine setting should be configured correctly. CCE-15602-6 The "Scripting of Java applets" current user setting should be configured correctly for the Local Machine Zone. CCE-16906-0 The "Disable changing Calendar and Contact settings" current user setting should be configured correctly. CCE-15833-7 The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16051-5 The "Customize Command Labels" current user setting should be configured correctly. CCE-16349-3 The "Turn on Compatibility Logging" machine setting should be configured correctly. CCE-14982-3 The "Automatic prompting for file downloads" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15944-2 The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16861-7 The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15067-2 The "Submit non-encrypted form data" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16412-9 The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15846-9 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Intranet Zone. CCE-16763-5 The "MK Protocol Security Restriction: All Processes" machine setting should be configured correctly. CCE-15681-0 The "Access data sources across domains" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-17035-7 The "Turn off Managing SmartScreen Filter" current user setting should be configured correctly. CCE-15726-3 The "Information Bar: All Processes" current user setting should be configured correctly. CCE-15450-0 The "Automatic prompting for file downloads" current user setting should be configured correctly for the Intranet Zone. CCE-15628-1 The "Logon options" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16567-0 The "Userdata persistence" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-17231-2 The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15811-3 The "Turn on Protected Mode" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15263-7 The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Internet Zone. CCE-10486-9 The "Use Pop-up Blocker" machine setting should be configured correctly for the Internet Zone. CCE-16798-1 The "Open files based on content, not file extension" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16985-4 The "Allow active scripting" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16073-9 The "Disable changing ratings settings" current user setting should be configured correctly. CCE-16118-2 The "Allow binary and script behaviors" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15713-1 The "Loose XAML files" machine setting should be configured correctly for the Local Machine Zone. CCE-15922-8 The "Allow META REFRESH" current user setting should be configured correctly for the Internet Zone. CCE-16643-9 The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-17146-2 The "Scripting of Java applets" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15824-6 The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Intranet Zone. CCE-16171-1 The "Do not collect InPrivate Filtering data" machine setting should be configured correctly. CCE-16950-8 The "Disable changing language settings" current user setting should be configured correctly. CCE-15748-7 The "Download signed ActiveX controls" current user setting should be configured correctly for the Local Machine Zone. CCE-15979-8 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16314-7 The "Open files based on content, not file extension" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15419-5 The "Turn off Quick Tabs functionality" machine setting should be configured correctly. CCE-16447-5 The "Allow installation of desktop items" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15472-4 The "Turn off toolbar upgrade tool" machine setting should be configured correctly. CCE-16216-4 The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Intranet Zone. CCE-15241-3 The "XAML browser applications" current user setting should be configured correctly for the Local Machine Zone. CCE-10277-2 The "Open files based on content, not file extension" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16264-4 The "Disable .NET Framework Setup" current user setting should be configured correctly for the Intranet Zone. CCE-16011-9 The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15969-9 The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: All Processes" current user setting should be configured correctly. CCE-15716-4 The "Use Pop-up Blocker" machine setting should be configured correctly for the Local Machine Zone. CCE-15320-5 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16309-7 The "Turn off picture display" current user setting should be configured correctly. CCE-15573-9 The "Allow active content over restricted protocols to access my computer" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16878-1 The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16362-6 The "Use Pop-up Blocker" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16625-6 The "Display mixed content" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16723-9 The "Disable .NET Framework Setup" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16976-3 The "Turn on Protected Mode" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15200-9 The "XAML browser applications" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15934-3 The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16299-0 The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16758-5 The "Turn off configuring underline links" current user setting should be configured correctly. CCE-16527-4 The "Deploy non-default Accelerators" machine setting should be configured correctly. CCE-10107-1 The "Open files based on content, not file extension" machine setting should be configured correctly for the Internet Zone. CCE-16482-2 The "XAML browser applications" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16580-3 The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16429-3 The "Display mixed content" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16397-2 The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Intranet Zone. CCE-16166-1 The "Turn off configuration of tabbed browsing pop-up behavior" machine setting should be configured correctly. CCE-10654-2 The "Java permissions" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15836-0 The "Consistent Mime Handling: Internet Explorer Processes" current user setting should be configured correctly. CCE-10293-9 The "Allow active content from CDs to run on user machines" machine setting should be configured correctly. CCE-16068-9 The "Disable the Privacy page" machine setting should be configured correctly. CCE-15947-5 The "Allow binary and script behaviors" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16286-7 The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16495-4 The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16033-3 The "Turn off Accelerators" machine setting should be configured correctly. CCE-15190-2 The "Allow file downloads" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-10578-3 The "Restrict File Download: Internet Explorer Processes" machine setting should be configured correctly. CCE-17088-6 The "Turn on Protected Mode" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16131-5 The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Internet Zone. CCE-15791-7 The "Network Protocol Lockdown: Internet Explorer Processes" machine setting should be configured correctly. CCE-15693-5 The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-10641-9 The "Prevent performance of First Run Customize settings" machine setting should be configured correctly. CCE-15849-3 The "Prevent the configuration of cipher strength update information URLs" machine setting should be configured correctly. CCE-16701-5 The "Allow binary and script behaviors" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16384-0 The "Internet Zone Template" machine setting should be configured correctly. CCE-16963-1 The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-17053-0 The "Prevent participation in the Customer Experience Improvement Program" current user setting should be configured correctly. CCE-16505-0 The "Allow active scripting" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16460-8 The "Automatic prompting for file downloads" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15912-9 The "Launching programs and unsafe files" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-10676-5 The "Turn on Protected Mode" machine setting should be configured correctly for the Internet Zone. CCE-15814-7 The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Intranet Zone. CCE-16188-5 The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16407-9 The "Turn on Protected Mode" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16055-6 The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15466-6 The "Prevent Deleting Cookies" current user setting should be configured correctly. CCE-15925-1 The "Prevent Deleting InPrivate Filtering data" current user setting should be configured correctly. CCE-16514-2 The "Launching programs and unsafe files" machine setting should be configured correctly for the Local Machine Zone. CCE-15880-8 The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Local Machine Zone. CCE-17066-2 The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16767-6 The "Turn off the auto-complete feature for web addresses" current user setting should be configured correctly. CCE-16416-0 The "Submit non-encrypted form data" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16669-4 The "Local Machine Zone Lockdown Security: Internet Explorer Processes" machine setting should be configured correctly. CCE-16153-9 The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15827-9 The "Open files based on content, not file extension" current user setting should be configured correctly for the Intranet Zone. CCE-16932-6 The "Submit non-encrypted form data" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-9959-8 The "Automatic prompting for file downloads" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15707-3 The "Turn off Compatibility View" machine setting should be configured correctly. CCE-16020-0 The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-17031-6 The "Use Automatic Detection for dial-up connections" current user setting should be configured correctly. CCE-16251-1 The "Turn on Protected Mode" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16612-4 The "Use SmartScreen Filter" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15564-8 The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15760-2 The "Use SmartScreen Filter" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16954-0 The "Logon options" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16077-0 The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15551-5 The "Userdata persistence" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15903-8 The "File size limits for Intranet zone" current user setting should be configured correctly. CCE-16647-0 The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15805-5 The "Send internationalized domain names" current user setting should be configured correctly. CCE-10685-6 The "Allow Scriptlets" machine setting should be configured correctly for the Internet Zone. CCE-15279-3 The "Turn on Protected Mode" current user setting should be configured correctly for the Internet Zone. CCE-9781-6 The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16175-2 The "Local Machine Zone Lockdown Security: Process List" machine setting should be configured correctly. CCE-16273-5 The "Turn on Information bar notification for intranet content" current user setting should be configured correctly. CCE-16042-4 The "File menu: Disable closing the browser and Explorer windows" current user setting should be configured correctly. CCE-15729-7 The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Local Machine Zone. CCE-16549-8 The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16318-8 The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16371-7 The "Scripting of Java applets" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16140-6 The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Local Machine Zone. CCE-15675-2 The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Internet Zone. CCE-16268-5 The "XAML browser applications" machine setting should be configured correctly for the Restricted Sites Zone. CCE-10138-6 The "Consistent Mime Handling: Internet Explorer Processes" machine setting should be configured correctly. CCE-16015-0 The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16366-7 The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15324-7 The "Disable .NET Framework Setup" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15773-5 The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15520-0 The "Use SmartScreen Filter" machine setting should be configured correctly for the Internet Zone. CCE-16113-3 The "Turn off Quick Tabs functionality" current user setting should be configured correctly. CCE-16629-8 The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Local Machine Zone. CCE-14923-7 The "Turn off InPrivate Browsing" current user setting should be configured correctly. CCE-16780-9 The "Turn on Warn about Certificate Address Mismatch" machine setting should be configured correctly. CCE-16727-0 The "Lock all Toolbars" current user setting should be configured correctly. CCE-16486-3 The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15479-9 The "Allow installation of desktop items" current user setting should be configured correctly for the Local Machine Zone. CCE-16211-5 The "Display mixed content" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15893-1 The "Allow status bar updates via script" machine setting should be configured correctly for the Local Machine Zone. CCE-9750-1 The "Allow status bar updates via script" machine setting should be configured correctly for the Internet Zone. CCE-10525-4 The "Access data sources across domains" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15938-4 The "Turn off Encryption Support" current user setting should be configured correctly. CCE-17018-3 The "Turn off pop-up management" current user setting should be configured correctly. CCE-9652-9 The "Turn off Encryption Support" machine setting should be configured correctly. CCE-15991-3 The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: Process List" current user setting should be configured correctly. CCE-9238-7 The "Prevent Deleting Cookies" machine setting should be configured correctly. CCE-15204-1 The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15697-6 The "Submit non-encrypted form data" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16037-4 The "Disable Open in New Window menu option" current user setting should be configured correctly. CCE-16597-7 The "XPS documents" machine setting should be configured correctly for the Local Machine Zone. CCE-16803-9 The "Software channel permissions" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15795-8 The "Binary Behavior Security Restriction: All Processes" current user setting should be configured correctly. CCE-16090-3 The "Turn off ActiveX opt-in prompt" current user setting should be configured correctly. CCE-16388-1 The "Restrict changing the default search provider" machine setting should be configured correctly. CCE-15542-4 The "Allow META REFRESH" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15599-4 The "Submit non-encrypted form data" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-17227-0 The "Allow font downloads" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16135-6 The "Software channel permissions" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16607-4 The "Allow font downloads" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16499-6 The "Allow META REFRESH" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15292-6 The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Internet Zone. CCE-15640-6 The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Intranet Zone. CCE-16509-2 The "XAML browser applications" current user setting should be configured correctly for the Trusted Sites Zone. CCE-10547-8 The "Allow binary and script behaviors" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15311-4 The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Internet Zone. CCE-9870-7 The "Make proxy settings per-machine (rather than per-user)" machine setting should be configured correctly. CCE-15818-8 The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Intranet Zone. CCE-16233-9 The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15871-7 The "Open files based on content, not file extension" current user setting should be configured correctly for the Internet Zone. CCE-16793-2 The "Allow binary and script behaviors" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16002-8 The "Loose XAML files" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16100-0 The "Submit non-encrypted form data" current user setting should be configured correctly for the Local Machine Zone. CCE-16562-1 The "Automatic prompting for file downloads" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15096-1 The "Loose XAML files" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16331-1 The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16473-1 The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-17062-1 The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16220-6 The "Allow file downloads" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16518-3 The "Protection From Zone Elevation: Process List" machine setting should be configured correctly. CCE-16891-4 The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15929-3 The "Help menu: Remove 'Send Feedback' menu option" current user setting should be configured correctly. CCE-10347-3 The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Restricted Sites Zone. CCE-17009-2 The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16571-2 The "XPS documents" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15982-2 The "Deny all add-ons unless specifically allowed in the Add-on List" machine setting should be configured correctly. CCE-16157-0 The "Download signed ActiveX controls" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16059-8 The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Local Machine Zone. CCE-15631-5 The "Binary Behavior Security Restriction: Process List" machine setting should be configured correctly. CCE-17107-4 The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15666-1 The "Allow Scriptlets" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16255-2 The "Locked-Down Local Machine Zone Template" machine setting should be configured correctly. CCE-15017-7 The "Loose XAML files" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16024-2 The "Allow META REFRESH" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15533-3 The "Prevent Deleting Web sites that the User has Visited" current user setting should be configured correctly. CCE-16122-4 The "Allow file downloads" current user setting should be configured correctly for the Local Machine Zone. CCE-15337-9 The "Turn off InPrivate Filtering" current user setting should be configured correctly. CCE-16353-5 The "Turn off displaying the Internet Explorer Help Menu" machine setting should be configured correctly. CCE-14910-4 The "Update Check Interval" should be set to the appropriate number of days. CCE-16616-5 The "Software channel permissions" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16714-8 The "Access data sources across domains" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16749-4 The "Turn off configuration of tabbed browsing pop-up behavior" current user setting should be configured correctly. CCE-16847-6 The "Add-on Management: All Processes" current user setting should be configured correctly. CCE-15960-8 The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-10182-4 The "Java permissions" machine setting should be configured correctly for the Internet Zone. CCE-16451-7 The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Local Machine Zone. CCE-16242-0 The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15302-3 The "File menu: Disable Save As... menu option" current user setting should be configured correctly. CCE-16179-4 The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15751-1 The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Internet Zone. CCE-15809-7 The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Internet Zone. CCE-15653-9 The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15862-6 The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-10436-4 The "Prevent ignoring certificate errors" machine setting should be configured correctly. CCE-16046-5 The "Allow font downloads" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16277-6 The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15786-7 The "Disable Context menu" current user setting should be configured correctly. CCE-16144-8 The "Display mixed content" current user setting should be configured correctly for the Local Machine Zone. CCE-16375-8 The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-14932-8 The "Turn on Internet Explorer 7 Standards Mode" machine setting should be configured correctly. CCE-10632-8 The "Disable showing the splash screen" setting should be configured correctly. CCE-15688-5 The "XAML browser applications" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15908-7 The "Allow active scripting" machine setting should be configured correctly for the Intranet Zone. CCE-15961-6 The "Allow binary and script behaviors" current user setting should be configured correctly for the Local Machine Zone. CCE-10387-9 The "Disable "Configuring History"" machine setting should be configured correctly. CCE-16433-5 The "Use SmartScreen Filter" current user setting should be configured correctly for the Intranet Zone. CCE-16117-4 The "Logon options" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16072-1 The "Use HTTP 1.1" machine setting should be configured correctly. CCE-16686-8 The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16784-1 The "Userdata persistence" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15863-4 The "Play sounds in web pages" machine setting should be configured correctly. CCE-16170-3 The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16313-9 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Trusted Sites Zone. CCE-15414-6 The "Turn off Automatic Crash Recovery Prompt" machine setting should be configured correctly. CCE-15512-7 The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-17014-2 The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15316-3 The "Turn on Warn about Certificate Address Mismatch" current user setting should be configured correctly. CCE-16949-0 The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16215-6 The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15632-3 The "Use Pop-up Blocker" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-17080-3 The "Intranet Zone Restricted Protocols" current user setting should be configured correctly. CCE-15841-0 The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Intranet Zone. CCE-16202-4 The "Allow Scriptlets" current user setting should be configured correctly for the Intranet Zone. CCE-16807-0 The "Logon options" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15730-5 The "Automatic prompting for file downloads" current user setting should be configured correctly for the Internet Zone. CCE-16139-8 The "Loose XAML files" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16411-1 The "Scripting of Java applets" current user setting should be configured correctly for the Intranet Zone. CCE-16860-9 The "Launching programs and unsafe files" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16709-8 The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15066-4 The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16094-5 The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16192-7 The "Binary Behavior Security Restriction: Internet Explorer Processes" current user setting should be configured correctly. CCE-16300-6 The "Software channel permissions" machine setting should be configured correctly for the Trusted Sites Zone. CCE-9973-9 The "Turn off Managing SmartScreen Filter" machine setting should be configured correctly. CCE-10472-9 The "Logon options" machine setting should be configured correctly for the Internet Zone. CCE-16290-9 The "Turn off suggestions for all user-installed providers" machine setting should be configured correctly. CCE-16699-1 The "Restrict search providers to a specific list of providers" current user setting should be configured correctly. CCE-16468-1 The "Submit non-encrypted form data" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15534-1 The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Intranet Zone. CCE-15996-2 The "Turn off friendly http error messages" current user setting should be configured correctly. CCE-15569-7 The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16104-2 The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15667-9 The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Internet Zone. CCE-16006-9 The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Internet Zone. CCE-16335-2 The "Allow active scripting" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15360-1 The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Intranet Zone. CCE-10539-5 The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Restricted Sites Zone. CCE-17005-0 The "MK Protocol Security Restriction: Process List" machine setting should be configured correctly. CCE-15195-1 The "Userdata persistence" current user setting should be configured correctly for the Local Machine Zone. CCE-16895-5 The "Open files based on content, not file extension" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15040-9 The "Restricted Sites Zone Restricted Protocols" machine setting should be configured correctly. CCE-16575-3 The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16224-8 The "Display mixed content" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16322-0 The "Mime Sniffing Safety Feature: All Processes" machine setting should be configured correctly. CCE-16028-3 The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Internet Zone. CCE-16442-6 The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16357-6 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Intranet Zone. CCE-16816-1 The "Disable .NET Framework Setup" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16126-5 The "Allow status bar updates via script" current user setting should be configured correctly for the Local Machine Zone. CCE-16081-2 The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Local Machine Zone. CCE-15974-9 The "Allow installation of desktop items" current user setting should be configured correctly for the Intranet Zone. CCE-16718-9 The "Restrict ActiveX Install: All Processes" machine setting should be configured correctly. CCE-16259-4 The "Site to Zone Assignment List" current user setting should be configured correctly. CCE-16540-7 The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-10820-9 The "Download signed ActiveX controls" machine setting should be configured correctly for the Intranet Zone. CCE-15601-8 The "Logon options" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16771-8 The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16905-2 The "Userdata persistence" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15876-6 The "Allow META REFRESH" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16246-1 The "Disable .NET Framework Setup" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15525-9 The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15987-1 The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15778-4 The "Submit non-encrypted form data" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16455-8 The "Use SmartScreen Filter" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16344-4 The "Allow binary and script behaviors" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15480-7 The "Prevent Deleting Favorites Site Data" machine setting should be configured correctly. CCE-16553-0 The "Open files based on content, not file extension" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16148-9 The "Turn off pop-up management" machine setting should be configured correctly. CCE-15952-5 The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15721-4 The "Allow Scriptlets" machine setting should be configured correctly for the Local Machine Zone. CCE-16420-2 The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16379-0 The "Logon options" current user setting should be configured correctly for the Intranet Zone. CCE-15854-3 The "Allow status bar updates via script" current user setting should be configured correctly for the Intranet Zone. CCE-16535-7 The "Allow active scripting" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15712-3 The "Userdata persistence" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16076-2 The "Use SmartScreen Filter" current user setting should be configured correctly for the Local Machine Zone. CCE-15965-7 The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16490-5 The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16437-6 The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Intranet Zone. CCE-16174-5 The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15867-5 The "Shockwave Flash" current user setting should be configured correctly. CCE-15747-9 The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16272-7 The "Allow binary and script behaviors" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-9230-4 The "Only use the ActiveX Installer Service for installation of ActiveX Controls" machine setting should be configured correctly. CCE-17010-0 The "Allow active scripting" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16041-6 The "Access data sources across domains" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-10650-0 The "Launching programs and unsafe files" machine setting should be configured correctly for the Internet Zone. CCE-16633-0 The "Display mixed content" machine setting should be configured correctly for the Local Machine Zone. CCE-16219-8 The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16370-9 The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15649-7 The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15057-3 The "Userdata persistence" machine setting should be configured correctly for the Intranet Zone. CCE-16317-0 The "File size limits for Restricted Sites zone" current user setting should be configured correctly. CCE-15471-6 The "Customize Command Labels" machine setting should be configured correctly. CCE-15930-1 The "Allow status bar updates via script" machine setting should be configured correctly for the Intranet Zone. CCE-16731-2 The "XPS documents" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15832-9 The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16513-4 The "Automatic prompting for file downloads" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16304-8 The "Download signed ActiveX controls" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15591-1 The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Intranet Zone. CCE-16766-8 The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Trusted Sites Zone. CCE-10574-2 The "Protection From Zone Elevation: Internet Explorer Processes" machine setting should be configured correctly. CCE-17023-3 The "Use Pop-up Blocker" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15943-4 The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Trusted Sites Zone. CCE-15734-7 The "Allow font downloads" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16196-8 The "Logon options" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16864-1 The "Userdata persistence" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16415-2 The "XPS documents" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16668-6 The "Disable .NET Framework Setup" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15845-1 The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15636-4 The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16098-6 The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16206-5 The "Allow Scriptlets" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16339-4 The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16108-3 The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Local Machine Zone. CCE-16294-1 The "Display mixed content" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15538-2 The "Disable .NET Framework Setup" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16063-0 The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-10396-0 The "Disable the Advanced page" machine setting should be configured correctly. CCE-16611-6 The "XPS documents" current user setting should be configured correctly for the Restricted Sites Zone. CCE-10672-4 The "Loose XAML files" machine setting should be configured correctly for the Internet Zone. CCE-16161-2 The "Turn off Cross Document Messaging" current user setting should be configured correctly. CCE-15168-8 The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Intranet Zone. CCE-16392-3 The "Display mixed content" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15199-3 The "Allow active scripting" current user setting should be configured correctly for the Internet Zone. CCE-16281-8 The "Scripting of Java applets" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15507-7 The "Allow active content over restricted protocols to access my computer" machine setting should be configured correctly for the Internet Zone. CCE-16579-5 The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Local Machine Zone. CCE-16642-1 The "Allow Scriptlets" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15044-1 The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15823-8 The "XPS documents" current user setting should be configured correctly for the Intranet Zone. CCE-16899-7 The "Automatically check for Internet Explorer updates" current user setting should be configured correctly. CCE-15921-0 The "Use Pop-up Blocker" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16326-1 The "Display mixed content" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16228-9 The "Use Pop-up Blocker" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16544-9 The "Allow binary and script behaviors" machine setting should be configured correctly for the Local Machine Zone. CCE-16775-9 The "Restrict File Download: Process List" machine setting should be configured correctly. CCE-15978-0 The "Menu Controls" current user setting should be configured correctly. CCE-15703-2 The "Use Pop-up Blocker" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16085-3 The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Local Machine Zone. CCE-10561-9 The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Internet Zone. CCE-10178-2 The "Loose XAML files" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16183-6 The "Loose XAML files" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16446-7 The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-9790-7 The "Allow installation of desktop items" machine setting should be configured correctly for the Internet Zone. CCE-10276-4 The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Internet Zone. CCE-15484-9 The "Consistent Mime Handling: All Processes" current user setting should be configured correctly. CCE-16050-7 The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Internet Zone. CCE-16459-0 The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15529-1 The "Trusted Sites Zone Restricted Protocols" machine setting should be configured correctly. CCE-16348-5 The "Allow status bar updates via script" machine setting should be configured correctly for the Trusted Sites Zone. CCE-14981-5 The "Logon options" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16620-7 The "Pop-up allow list" current user setting should be configured correctly. CCE-15022-7 The "Prevent Deleting Passwords" machine setting should be configured correctly. CCE-15177-9 The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Local Machine Zone. CCE-14928-6 The "Allow active content over restricted protocols to access my computer" machine setting should be configured correctly for the Intranet Zone. CCE-16522-5 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15351-0 The "Launching programs and unsafe files" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15725-5 The "Do not collect InPrivate Filtering data" current user setting should be configured correctly. CCE-16851-8 The "Allow font downloads" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15956-6 The "Software channel permissions" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-17036-5 The "Access data sources across domains" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16886-4 The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16424-4 The "Software channel permissions" current user setting should be configured correctly for the Intranet Zone. CCE-15858-4 The "Open files based on content, not file extension" current user setting should be configured correctly for the Local Machine Zone. CCE-15946-7 The "Use UTF-8 for mailto links" current user setting should be configured correctly. CCE-16953-2 The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16494-7 The "Open files based on content, not file extension" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15234-8 The "Submit non-encrypted form data" machine setting should be configured correctly for the Intranet Zone. CCE-16241-2 The "Turn on Caret Browsing support" machine setting should be configured correctly. CCE-16539-9 The "Allow status bar updates via script" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15848-5 The "Allow active content over restricted protocols to access my computer" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16178-6 The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16602-5 The "Disable .NET Framework Setup" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16592-8 The "Check for server certificate revocation" current user setting should be configured correctly. CCE-16700-7 The "Turn off Developer Tools" current user setting should be configured correctly. CCE-10074-3 The "Check for server certificate revocation" machine setting should be configured correctly. CCE-15487-2 The "Object Caching Protection: All Processes" machine setting should be configured correctly. CCE-16045-7 The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16504-3 The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15683-6 The "Prevent Deleting Passwords" current user setting should be configured correctly. CCE-16276-8 The "Use Policy Accelerators" machine setting should be configured correctly. CCE-15728-9 The "Disable .NET Framework Setup" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15911-1 The "Prevent users from configuring the color of links that have not yet been clicked" current user setting should be configured correctly. CCE-16690-0 The "Disable the Advanced page" current user setting should be configured correctly. CCE-15781-8 The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: Process List" machine setting should be configured correctly. CCE-15813-9 The "Launching programs and unsafe files" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16637-1 The "Allow Scriptlets" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16406-1 The "Display error message on proxy script download failure" current user setting should be configured correctly. CCE-9945-7 The "Turn on Protected Mode" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15091-2 The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16143-0 The "Submit non-encrypted form data" machine setting should be configured correctly for the Internet Zone. CCE-16374-1 The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16263-6 The "Disable changing Automatic Configuration settings" current user setting should be configured correctly. CCE-15924-4 The "Allow active content from CDs to run on user machines" current user setting should be configured correctly. CCE-10052-9 The "Allow software to run or install even if the signature is invalid" machine setting should be configured correctly. CCE-16517-5 The "Allow Scriptlets" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15670-3 The "Turn off "Delete Browsing History" functionality" current user setting should be configured correctly. CCE-16010-1 The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16308-9 The "Allow installation of desktop items" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16868-2 The "Hide the Status Bar" current user setting should be configured correctly. CCE-16472-3 The "Turn off Windows Search AutoComplete" current user setting should be configured correctly. CCE-16361-8 The "Open files based on content, not file extension" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-14926-0 The "Automatic prompting for file downloads" machine setting should be configured correctly for the Intranet Zone. CCE-15212-4 The "Software channel permissions" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-17076-1 The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15016-9 The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16298-2 The "Automatic prompting for file downloads" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16067-1 The "Automatic prompting for file downloads" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16811-2 The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16165-3 The "Allow font downloads" machine setting should be configured correctly for the Local Machine Zone. CCE-15474-0 The "Use large Icons for Command Buttons" machine setting should be configured correctly. CCE-15696-8 The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Intranet Zone. CCE-16285-9 The "Turn off configuration of window reuse" current user setting should be configured correctly. CCE-15902-0 The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Local Machine Zone. CCE-16032-5 The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: Internet Explorer Processes" machine setting should be configured correctly. CCE-16130-7 The "Scripting of Java applets" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15598-6 The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Internet Zone. CCE-15804-8 The "Use Policy List of Internet Explorer 7 sites" machine setting should be configured correctly. CCE-15794-1 The "Allow META REFRESH" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16383-2 The "Turn on the hover color option" current user setting should be configured correctly. CCE-15443-5 The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Intranet Zone. CCE-16089-5 The "Add-on List" current user setting should be configured correctly. CCE-9673-5 The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15959-0 The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Local Machine Zone. CCE-17054-8 The "Display mixed content" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16187-7 The "Launching programs and unsafe files" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16548-0 The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15465-8 The "InPrivate Filtering Threshold" current user setting should be configured correctly. CCE-16054-9 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Local Machine Zone. CCE-16722-1 The "Disable customizing browser toolbar buttons" current user setting should be configured correctly. CCE-9660-2 The "Intranet Sites: Include all network paths (UNCs)" machine setting should be configured correctly. CCE-16624-9 The "Launching programs and unsafe files" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16152-1 The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16931-8 The "Local Machine Zone Restricted Protocols" current user setting should be configured correctly. CCE-15706-5 The "Submit non-encrypted form data" machine setting should be configured correctly for the Local Machine Zone. CCE-15661-2 The "Allow active scripting" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16526-6 The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Local Machine Zone. CCE-15892-3 The "Allow active scripting" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16855-9 The "Disable .NET Framework Setup" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15563-0 The "Turn off configuration of default behavior of new tab creation" machine setting should be configured correctly. CCE-17032-4 The "Turn on Protected Mode" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-9233-8 The "Prevent Bypassing SmartScreen Filter Warnings" machine setting should be configured correctly. CCE-16250-3 The "Java permissions" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15937-6 The "Carpoint" current user setting should be configured correctly. CCE-16481-4 The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16428-5 The "Download signed ActiveX controls" current user setting should be configured correctly for the Intranet Zone. CCE-10163-4 The "Use SmartScreen Filter" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-10394-5 The "Security Zones: Do not allow users to add/delete sites" machine setting should be configured correctly. CCE-9793-1 The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Internet Zone. CCE-15990-5 The "Userdata persistence" current user setting should be configured correctly for the Internet Zone. CCE-16659-5 The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16988-8 The "Automatic prompting for file downloads" current user setting should be configured correctly for the Restricted Sites Zone. CCE-10466-1 The "Allow file downloads" machine setting should be configured correctly for the Restricted Sites Zone. CCE-10065-1 The "Use SmartScreen Filter" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15193-6 The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Local Machine Zone. CCE-15652-1 The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Internet Zone. CCE-16245-3 The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Trusted Sites Zone. CCE-10590-8 The "Configure Delete Browsing History on exit" current user setting should be configured correctly. CCE-16802-1 The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Trusted Sites Zone. CCE-15301-5 The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16704-9 The "Turn on inline AutoComplete for Web addresses" current user setting should be configured correctly. CCE-16606-6 The "Use HTTP 1.1 through proxy connections" current user setting should be configured correctly. CCE-9882-2 The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Internet Zone. CCE-16498-8 The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16957-3 The "Display mixed content" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15915-2 The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15456-7 The "Allow file downloads" current user setting should be configured correctly for the Intranet Zone. CCE-16508-4 The "Allow installation of desktop items" machine setting should be configured correctly for the Local Machine Zone. CCE-15785-9 The "Turn on script debugging" current user setting should be configured correctly. CCE-16694-2 The "Disable the Connections page" current user setting should be configured correctly. CCE-10635-1 The "Mime Sniffing Safety Feature: Internet Explorer Processes" machine setting should be configured correctly. CCE-15589-5 The "Allow font downloads" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16378-2 The "Turn off managing Pop-up filter level" machine setting should be configured correctly. CCE-16147-1 The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Local Machine Zone. CCE-16049-9 The "Intranet Sites: Include all network paths (UNCs)" current user setting should be configured correctly. CCE-16561-3 The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15817-0 The "Network Protocol Lockdown: Process List" machine setting should be configured correctly. CCE-16922-7 The "Allow status bar updates via script" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15674-5 The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16014-3 The "Turn on Protected Mode" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15719-8 The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16365-9 The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16476-4 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15171-2 The "Launching programs and unsafe files" current user setting should be configured correctly for the Local Machine Zone. CCE-15928-5 The "Scripted Window Security Restrictions: All Processes" machine setting should be configured correctly. CCE-15981-4 The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15323-9 The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16112-5 The "Binary Behavior Security Restriction: All Processes" machine setting should be configured correctly. CCE-15421-1 The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Intranet Zone. CCE-16267-7 The "Disable Internet Connection wizard" current user setting should be configured correctly. CCE-10622-9 The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Internet Zone. CCE-17117-3 The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16210-7 The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Internet Zone. CCE-16815-3 The "Logon options" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16441-8 The "Allow installation of desktop items" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16672-8 The "Local Machine Zone Lockdown Security: Internet Explorer Processes" current user setting should be configured correctly. CCE-16169-5 The "XPS documents" current user setting should be configured correctly for the Internet Zone. CCE-16770-0 The "Prevent users from configuring the hover color" current user setting should be configured correctly. CCE-16619-9 The "Open files based on content, not file extension" machine setting should be configured correctly for the Local Machine Zone. CCE-16944-1 The "Internet Zone Restricted Protocols" current user setting should be configured correctly. CCE-17085-2 The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15906-1 The "Disable .NET Framework Setup" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16036-6 The "Download signed ActiveX controls" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15447-6 The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Intranet Zone. CCE-16289-1 The "Allow file downloads" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16450-9 The "Allow active scripting" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16134-9 The "Userdata persistence" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15545-7 The "Turn off the activation of the quick pick menu" machine setting should be configured correctly. CCE-15798-2 The "Download signed ActiveX controls" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16387-3 The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15082-1 The "Turn on Protected Mode" machine setting should be configured correctly for the Intranet Zone. CCE-15643-0 The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Internet Zone. CCE-16232-1 The "Turn off Managing Pop-up Allow list" current user setting should be configured correctly. CCE-17050-6 The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15808-9 The "View menu: Disable Source menu option" current user setting should be configured correctly. CCE-16001-0 The "Prevent Deleting InPrivate Filtering data" machine setting should be configured correctly. CCE-15510-1 The "Software channel permissions" current user setting should be configured correctly for the Internet Zone. CCE-15314-8 The "Disable .NET Framework Setup" machine setting should be configured correctly for the Internet Zone. CCE-9905-1 The "Allow third-party browser extensions" machine setting should be configured correctly. CCE-10083-4 The "Scripting of Java applets" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16330-3 The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Intranet Zone. CCE-9775-8 The "Turn off "Delete Browsing History" functionality" machine setting should be configured correctly. CCE-16058-0 The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16824-5 The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-17063-9 The "Use SmartScreen Filter" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16681-9 The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Local Machine Zone. CCE-15060-7 The "Network Protocol Lockdown: All Processes" machine setting should be configured correctly. CCE-16628-0 The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Local Machine Zone. CCE-16156-2 The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16935-9 The "XAML browser applications" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-10096-6 The "Security Zones: Use only machine settings" machine setting should be configured correctly. CCE-15434-4 The "Prevent users from configuring background color" current user setting should be configured correctly. CCE-16023-4 The "Allow font downloads" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16254-5 The "Do not save encrypted pages to disk" machine setting should be configured correctly. CCE-15994-7 The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16859-1 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15567-1 The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15532-5 The "Java permissions" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16352-7 The "XAML browser applications" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16121-6 The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Local Machine Zone. CCE-16583-7 The "Software channel permissions" machine setting should be configured correctly for the Local Machine Zone. CCE-15896-4 The "Turn off Windows Search AutoComplete" machine setting should be configured correctly. CCE-16761-9 The "Automatic prompting for file downloads" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10725-0 The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Restricted Sites Zone. CCE-15840-2 The "Loose XAML files" machine setting should be configured correctly for the Intranet Zone. CCE-16347-7 The "Loose XAML files" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16806-2 The "Allow status bar updates via script" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16663-7 The "Turn on Suggested Sites" current user setting should be configured correctly. CCE-16249-5 The "Enforce Full Screen Mode" machine setting should be configured correctly. CCE-15328-8 The "Display mixed content" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15679-4 The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15208-2 The "XAML browser applications" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15897-2 The "XAML browser applications" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16467-3 The "Scripted Window Security Restrictions: All Processes" current user setting should be configured correctly. CCE-15995-4 The "Allow binary and script behaviors" current user setting should be configured correctly for the Intranet Zone. CCE-16926-8 The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16565-4 The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15622-4 The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15198-5 The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16578-7 The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Local Machine Zone. CCE-16116-6 The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Local Machine Zone. CCE-10342-4 The "Java permissions" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15546-5 The "Disable .NET Framework Setup" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16071-3 The "Launching programs and unsafe files" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16641-3 The "Protection From Zone Elevation: All Processes" machine setting should be configured correctly. CCE-15799-0 The "Local Machine Zone Lockdown Security: All Processes" current user setting should be configured correctly. CCE-15296-7 The "Intranet Zone Restricted Protocols" machine setting should be configured correctly. CCE-16018-4 The "Launching programs and unsafe files" machine setting should be configured correctly for the Trusted Sites Zone. CCE-17113-2 The "Enable Native XMLHttpRequest Support" current user setting should be configured correctly. CCE-16445-9 The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15973-1 The "Do not save encrypted pages to disk" current user setting should be configured correctly. CCE-15742-0 The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15644-8 The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16948-2 The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16214-9 The "Object Caching Protection: All Processes" current user setting should be configured correctly. CCE-9776-6 The "Turn off configuring the update check interval (in days)" machine setting should be configured correctly. CCE-16543-1 The "Automatic prompting for file downloads" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16970-6 The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16201-6 The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Internet Zone. CCE-15986-3 The "Use Pop-up Blocker" current user setting should be configured correctly for the Internet Zone. CCE-15733-9 The "Disable .NET Framework Setup" machine setting should be configured correctly for the Local Machine Zone. CCE-16454-1 The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16872-4 The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-9865-7 The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Internet Zone. CCE-17028-2 The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-9669-3 The "Software channel permissions" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16191-9 The "Turn off configuration of window reuse" machine setting should be configured correctly. CCE-16093-7 The "Configure new tab page default behavior" current user setting should be configured correctly. CCE-16138-0 The "XAML browser applications" machine setting should be configured correctly for the Internet Zone. CCE-16917-7 The "Disable changing Temporary Internet files settings" current user setting should be configured correctly. CCE-15635-6 The "Display mixed content" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16552-2 The "Allow Scriptlets" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16005-1 The "Turn off the auto-complete feature for web addresses" machine setting should be configured correctly. CCE-16236-2 The "Turn off Automatic Crash Recovery Prompt" current user setting should be configured correctly. CCE-16650-4 The "Use Pop-up Blocker" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15951-7 The "Microsoft Chat" current user setting should be configured correctly. CCE-16103-4 The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Intranet Zone. CCE-16223-0 The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16828-6 The "Scripting of Java applets" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15755-2 The "Scripting of Java applets" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-17006-8 The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16432-7 The "Disable "Configuring History"" current user setting should be configured correctly. CCE-15964-0 The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: Internet Explorer Processes" current user setting should be configured correctly. CCE-10200-4 The "Userdata persistence" machine setting should be configured correctly for the Internet Zone. CCE-15404-7 The "Loose XAML files" current user setting should be configured correctly for the Internet Zone. CCE-15866-7 The "Display mixed content" machine setting should be configured correctly for the Intranet Zone. CCE-16321-2 The "Download signed ActiveX controls" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-10503-1 The "Disable changing certificate settings" current user setting should be configured correctly. CCE-15600-0 The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16125-7 The "Mime Sniffing Safety Feature: Process List" current user setting should be configured correctly. CCE-16356-8 The "Disable changing link color settings" current user setting should be configured correctly. CCE-16080-4 The "Allow file downloads" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15185-2 The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Local Machine Zone. CCE-16904-5 The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-10405-9 The "Restrict ActiveX Install: Internet Explorer Processes" machine setting should be configured correctly. CCE-16258-6 The "Allow status bar updates via script" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10235-0 The "Do not allow users to enable or disable add-ons" machine setting should be configured correctly. CCE-16027-5 The "Intranet Zone Template" machine setting should be configured correctly. CCE-10004-0 The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15385-8 The "Allow META REFRESH" current user setting should be configured correctly for the Local Machine Zone. CCE-16053-1 The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Intranet Zone. CCE-15942-6 The "XPS documents" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16863-3 The "Turn off toolbar upgrade tool" current user setting should be configured correctly. CCE-10360-6 The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15483-1 The "Object Caching Protection: Internet Explorer Processes" machine setting should be configured correctly. CCE-9821-0 The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Internet Zone. CCE-16667-8 The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16414-5 The "Prevent Deleting Favorites Site Data" current user setting should be configured correctly. CCE-15844-4 The "Object Caching Protection: Process List" current user setting should be configured correctly. CCE-16151-3 The "Allow META REFRESH" machine setting should be configured correctly for the Internet Zone. CCE-10431-5 The "Allow status bar updates via script" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16569-6 The "Allow the display of image download placeholders" current user setting should be configured correctly. CCE-10609-6 The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Restricted Sites Zone. CCE-15724-8 The "Allow binary and script behaviors" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15999-6 The "Allow font downloads" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16885-6 The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-9580-2 The "Turn off ActiveX opt-in prompt" machine setting should be configured correctly. CCE-15626-5 The "Access data sources across domains" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16983-9 The "Use Pop-up Blocker" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16743-7 The "Maximum number of connections per server (HTTP 1.1)" current user setting should be configured correctly. CCE-15822-0 The "Turn off Compatibility View button" machine setting should be configured correctly. CCE-15920-2 The "Submit non-encrypted form data" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16075-4 The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16841-9 The "Disable .NET Framework Setup" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-16645-4 The "Restrict ActiveX Install: Internet Explorer Processes" current user setting should be configured correctly. CCE-16173-7 The "Allow binary and script behaviors" current user setting should be configured correctly for the Internet Zone. CCE-15613-3 The "Prevent Internet Explorer Search box from displaying" machine setting should be configured correctly. CCE-16271-9 The "Turn off Managing Pop-up Allow list" machine setting should be configured correctly. CCE-15243-9 The "Java permissions" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16040-8 The "Launching programs and unsafe files" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16547-2 The "XAML browser applications" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15012-8 The "Allow status bar updates via script" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16218-0 The "Restrict changing the default search provider" current user setting should be configured correctly. CCE-15417-9 The "Prevent users from configuring text color" current user setting should be configured correctly. CCE-15515-0 The "Allow active content over restricted protocols to access my computer" current user setting should be configured correctly for the Internet Zone. CCE-15372-6 The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Trusted Sites Zone. CCE-16449-1 The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15648-9 The "Scripting of Java applets" machine setting should be configured correctly for the Trusted Sites Zone. CCE-10275-6 The "Java permissions" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-16458-2 The "Locked-Down Trusted Sites Zone Template" machine setting should be configured correctly. CCE-15341-1 The "Object Caching Protection: Internet Explorer Processes" current user setting should be configured correctly. CCE-9869-9 The 'Software channel permissions' setting should be configured correctly for the Internet Zone. CCE-15594-5 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16876-5 The "XPS documents" machine setting should be configured correctly for the Locked-Down Internet Zone. CCE-15639-8 The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-15021-9 The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-17122-3 The "Turn off the XDomainRequest Object" current user setting should be configured correctly. CCE-10475-2 The "Allow installation of desktop items" machine setting should be configured correctly for the Restricted Sites Zone. CCE-16556-3 The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16974-8 The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16097-8 The "Trusted Sites Zone Restricted Protocols" current user setting should be configured correctly. CCE-16205-7 The "Allow file downloads" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15692-7 The "Java permissions" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15800-6 The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Local Machine Zone. CCE-16195-0 The "XPS documents" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone. CCE-15955-8 The "File menu: Disable Open menu option" current user setting should be configured correctly. CCE-10253-3 The "Prevent "Fix settings" functionality" machine setting should be configured correctly. CCE-16338-6 The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Locked-Down Intranet Zone. CCE-16752-8 The "Turn off displaying the Internet Explorer Help Menu" current user setting should be configured correctly. CCE-16107-5 The "Allow installation of desktop items" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16293-3 The "Local Machine Zone Lockdown Security: Process List" current user setting should be configured correctly. CCE-16062-2 The "Allow active scripting" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-16423-6 The "Allow META REFRESH" machine setting should be configured correctly for the Local Machine Zone. CCE-15496-3 The "Enable Native XMLHttpRequest Support" machine setting should be configured correctly. CCE-16160-4 The "Allow binary and script behaviors" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-16391-5 The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Restricted Sites Zone. CCE-15857-6 The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Local Machine Zone. CCE-16009-3 The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Locked-Down Intranet Zone. CCE-15506-9 The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-16227-1 The "Turn off the Security Settings Check feature" current user setting should be configured correctly. CCE-15968-1 The "Disable .NET Framework Setup" current user setting should be configured correctly for the Internet Zone. CCE-16280-0 The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10595-7 The "Turn off changing the URL to be displayed for checking updates to Internet Explorer and Internet Tools" machine setting should be configured correctly. CCE-16898-9 The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone. CCE-10605-4 The "Disable changing connection settings" machine setting should be configured correctly. CCE-16325-3 The "Allow installation of desktop items" current user setting should be configured correctly for the Locked-Down Local Machine Zone. CCE-15933-5 The "File menu: Disable New menu option" current user setting should be configured correctly. CCE-16084-6 The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16129-9 The "Allow binary and script behaviors" current user setting should be configured correctly for the Locked-Down Internet Zone. CCE-15702-4 The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Restricted Sites Zone. CCE-17059-7 The "XAML browser applications" current user setting should be configured correctly for the Restricted Sites Zone. CCE-16182-8 The "Use SmartScreen Filter" current user setting should be configured correctly for the Internet Zone. CCE-16908-6 The "Do not allow resetting Internet Explorer settings" current user setting should be configured correctly. CCE-15835-2 The "Scripting of Java applets" current user setting should be configured correctly for the Trusted Sites Zone. CCE-16730-4 The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Locked-Down Internet Zone. |