CIS Microsoft Windows 10 Enterprise Release 1909 Benchmark

18.9.77.13.3Network Protection

This section contains Windows Network Protection settings.

This Group Policy section is provided by the Group Policy template WindowsDefender.admx/adml that is included with the Microsoft Windows 10 Release 1709 Administrative Templates (or newer). 18.9.77.13.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block' (Scored)

ProfileApplicability:

 Level 1 (L1) - Corporate/Enterprise Environment (general use)

Description:

This policy setting controls Windows Defender Exploit Guard network protection.

The recommended state for this setting is: Enabled: Block .

Rationale:

This setting can help prevent employees fromusing any application to access dangerous domains that may host phishing scams, exploit-hosting sites, and other malicious content on the Internet.

Audit:

Navigate to the UI Path articulated in the Remediation section and confirm it is set as prescribed. This group policy setting is backed by the following registry location:

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\Network Protection:EnableNetworkProtection

1096 | P a g e