CCE Lists

Unnamed: 0	Last modified: 2010-09-25	Unnamed: 2	Unnamed: 3	Unnamed: 4	Unnamed: 5	Unnamed: 6	Unnamed: 7	Unnamed: 8	Unnamed: 9
NaN	Version: 5.20100926	NaN	NaN	NaN	NaN	NaN	NaN	NaN	NaN
CCE ID	CCE Description	CCE Parameters	CCE Technical Mechanisms	NaN	Old v4 CCE ID	Microsoft Security Compliance Management Toolkit for Internet Explorer 8, Version 1.0: "Internet Explorer 8 Security Baseline.xml"	Microsoft Security Compliance Manager (SCM) Baselines and Settings Packs	USGCB Beta 2010-08-31 XCCDF (USGCB-ie8_xccdf.xml)	USGCB Beta 2010-08-31 OVAL (USGCB-ie8_oval.xml)
CCE-10002-4	The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow cut, copy or paste operations from the clipboard via script (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1407	NaN	CCE-49	Setting Index #32: This policy setting allows you to manage whether scripts can perform a clipboard operation (for example, cut, copy, and paste) in the security zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10004-0	The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Only allow approved domains to use ActiveX controls without prompt (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4\120b	NaN	NaN	Setting Index #20: This policy setting controls whether or not the user is prompted to allow ActiveX controls to run on Web sites other than the Web site that installed the ActiveX control.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10033-9	The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow drag and drop or copy and paste files (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1802	NaN	CCE-685	Setting Index #33: This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10037-0	The "Security Zones: Do not allow users to change policies" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Zones: Do not allow users to change policies (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_options_edit	NaN	CCE-833	Setting Index #91: If you enable this policy setting, you disable the Custom Level button and Security level for this zone slider on the Security tab in the Internet Options dialog box.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10052-9	The "Allow software to run or install even if the signature is invalid" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Allow software to run or install even if the signature is invalid (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Download\RunInvalidSignatures	NaN	CCE-449	Setting Index #83: Allow software to run or install even if the signature is invalid	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10065-1	The "Use SmartScreen Filter" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Use SmartScreen Filter (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2\2301	NaN	NaN	Setting Index #22: This policy setting controls whether SmartScreen Filter scans pages in this zone for malicious content.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10074-3	The "Check for server certificate revocation" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Check for server certificate revocation (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\CertificateRevocation	NaN	CCE-690	Setting Index #24: This policy setting allows you to manage whether Internet Explorer will check revocation status of servers' certificates.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10083-4	The "Scripting of Java applets" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Scripting of Java applets (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1402	NaN	CCE-1000	Setting Index #77: This policy setting allows you to manage whether applets are exposed to scripts within the zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10094-1	The "Use Pop-up Blocker" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Use Pop-up Blocker (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1809	NaN	CCE-660	Setting Index #79: This policy setting allows you to manage whether unwanted pop-up windows appear.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10096-6	The "Security Zones: Use only machine settings" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Zones: Use only machine settings (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_HKLM_only	NaN	CCE-5	Setting Index #92: This policy setting affects how security zone changes apply to different users.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10107-1	The "Open files based on content, not file extension" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Open files based on content, not file extension (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2100	NaN	CCE-910	Setting Index #46: This policy setting allows you to manage MIME sniffing for file promotion from one type to another based on a MIME sniff. A MIME sniff is the recognition by Internet Explorer of the file type based on a bit signature.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10138-6	The "Consistent Mime Handling: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Consistent Mime Handling\Internet Explorer Processes	NaN	CCE-382	Setting Index #7: When set to Enabled, Internet Explorer examines each received file for a consistent MIME type. When set to Disabled or Not configured, Internet Explorer does not require consistent MIME data from each file.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10145-1	The "Use SmartScreen Filter" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Use SmartScreen Filter (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4\2301	NaN	NaN	Setting Index #21: This policy setting controls whether SmartScreen Filter scans pages in this zone for malicious content.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10163-4	The "Use SmartScreen Filter" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Use SmartScreen Filter (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1\2301	NaN	NaN	Setting Index #18: This policy setting controls whether SmartScreen Filter scans pages in this zone for malicious content.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10182-4	The "Java permissions" machine setting should be configured correctly for the Internet Zone.	Custom/Disable Java/High safety/Low safety/Medium safety	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Java permissions (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1C00	NaN	CCE-132	Setting Index #42: This policy setting allows you to manage permissions for Java applets.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10211-1	The "Use SmartScreen Filter" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Use SmartScreen Filter (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\2301	NaN	NaN	Setting Index #15: This policy setting controls whether SmartScreen Filter scans pages in this zone for malicious content.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10235-0	The "Do not allow users to enable or disable add-ons" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Do not allow users to enable or disable add-ons (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoExtensionManagement	NaN	CCE-708	Setting Index #84: This policy setting allows you to manage whether users have the ability to allow or deny add-ons through Add-On Manager.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10253-3	The "Prevent "Fix settings" functionality" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\\Prevent "Fix settings" functionality (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Security\DisableFixSecuritySettings	NaN	CCE-948	Setting Index #51: This policy setting prevents users from performing the "Fix settings" functionality related to the Security Settings Check in Internet Explorer.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10265-7	The "MK Protocol Security Restriction: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\MK Protocol Security Restriction\Internet Explorer Processes (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL\(Reserved)	NaN	CCE-591	Setting Index #9: When this setting is configured to Enabled, the MK protocol is blocked for Windows Explorer and Internet Explorer, which causes resources that use it to fail. When this setting is configured to Disabled, other applications can use the MK protocol API.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10277-2	The "Open files based on content, not file extension" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Open files based on content, not file extension (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2100	NaN	CCE-409	Setting Index #72: This policy setting allows you to manage MIME sniffing for file promotion from one type to another based on a MIME sniff.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10291-3	The "Turn on the auto-complete feature for user names and passwords on forms" current user setting should be configured correctly.	enabled/disabled	(1) GPO: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn on the auto-complete feature for user names and passwords on forms (2) Registry Key: HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FormSuggest Passwords	NaN	CCE-721	Setting Index #96: This policy setting controls automatic completion of user names and passwords in forms on Web pages, and prevents user prompts to save passwords.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10347-3	The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Initialize and script ActiveX controls not marked as safe (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1201	NaN	CCE-26	Setting Index #67: This policy setting allows you to manage ActiveX controls not marked as safe.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10360-6	The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Launching applications and files in an IFRAME (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1804	NaN	CCE-339	Setting Index #69: This policy setting allows you to manage whether applications may be run and files may be downloaded from an IFRAME reference in the HTML of the pages in this zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10380-4	The "Access data sources across domains" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Access data sources across domains (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1406	NaN	CCE-47	Setting Index #31: This policy setting allows you to manage whether Internet Explorer can access data from another security zone using the Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO).	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10387-9	The "Disable "Configuring History"" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Disable "Configuring History" (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Url History\DaysToKeep	NaN	CCE-66	Setting Index #25: This setting specifies the number of days that Internet Explorer keeps track of the pages viewed in the History List.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10388-7	The "Disable AutoComplete for forms" current user setting should be configured correctly.	enabled/disabled	(1) GPO: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable AutoComplete for forms (2) Registry Key: HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\FormSuggest	NaN	CCE-478	Setting Index #2: This policy setting controls automatic completion of fields in forms on Web pages.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10389-5	The "Automatic prompting for file downloads" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Automatic prompting for file downloads (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2200	NaN	CCE-16	Setting Index #38: This policy setting determines whether users will be prompted for non user-initiated file downloads.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10393-7	The "Allow active scripting" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow active scripting (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1400	NaN	CCE-292	Setting Index #54: This policy setting allows you to manage whether script code on pages in the zone is run	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10394-5	The "Security Zones: Do not allow users to add/delete sites" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Zones: Do not allow users to add/delete sites (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_zones_map_edit	NaN	CCE-146	Setting Index #90: Enable this policy setting to disable the site management settings for security zones.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10396-0	The "Disable the Advanced page" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Advanced Page (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel\AdvancedTab	NaN	CCE-810	Setting Index #29: This policy setting works in conjunction with other settings to ensure that users cannot change the settings that are configured in the Advanced tab of Internet Explorer.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10403-4	The "Allow font downloads" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow font downloads (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1604	NaN	CCE-491	Setting Index #34: This policy setting allows you to manage whether pages of the zone may download HTML fonts.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10405-9	The "Restrict ActiveX Install: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict ActiveX Install\Internet Explorer Processes	NaN	CCE-119	Setting Index #10: This policy setting provides the ability to block ActiveX control installation prompts for Internet Explorer processes.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10415-8	The "Disable Save this program to disk option" current user setting should be configured correctly.	enabled/disabled	(1) GPO: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\Disable Save this program to disk option (2) Registry Key: HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoSelectDownloadDir	NaN	CCE-412	Setting Index #5: This policy setting prevents users from saving a program or file that Internet Explorer has downloaded to the hard disk.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10431-5	The "Allow status bar updates via script" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow status bar updates via script (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2103	NaN	CCE-129	Setting Index #63: This policy setting allows you to manage whether script is allowed to update the status bar within the zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10433-1	The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Download unsigned ActiveX controls (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1004	NaN	CCE-176	Setting Index #40: This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10436-4	The "Prevent ignoring certificate errors" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Prevent ignoring certificate errors (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\PreventIgnoreCertErrors	NaN	CCE-938	Setting Index #52: When a user experiences Secure Socket Layer/Transport Layer Security (SSL/TLS) certificate errors such as "expired," "revoked," or "name mismatch," Internet Explorer blocks the user's ability to continue browsing the Web site.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10461-2	The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Download unsigned ActiveX controls (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1004	NaN	CCE-1012	Setting Index #66: This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10464-6	The "Disable changing proxy settings" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing proxy settings (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel\Proxy	NaN	CCE-62	Setting Index #28: This policy setting removes users' ability to change proxy settings.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10466-1	The "Allow file downloads" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow file downloads (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1803	NaN	CCE-970	Setting Index #58: This policy setting allows you to manage whether file downloads are permitted from the zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10470-3	The "Download signed ActiveX controls" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Download signed ActiveX controls (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1001	NaN	CCE-52	Setting Index #65: This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10472-9	The "Logon options" machine setting should be configured correctly for the Internet Zone.	Anonymous logon/Automatic logon only in Intranet zone/Automatic logon with current username and password/Prompt for user name and password	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Logon options (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1A00	NaN	CCE-720	Setting Index #44: This policy setting allows you to manage settings for logon options.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10475-2	The "Allow installation of desktop items" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow installation of desktop items (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1800	NaN	CCE-763	Setting Index #60: This policy setting allows you to manage whether users can install Active Desktop items from this zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10486-9	The "Use Pop-up Blocker" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Use Pop-up Blocker (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1809	NaN	CCE-1002	Setting Index #48: This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10503-1	The "Disable changing certificate settings" current user setting should be configured correctly.	enabled/disabled	(1) GPO: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing certificate settings (2) Registry Key: HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\Certificates	NaN	CCE-1037	Setting Index #3: This policy setting removes a user's ability to change certificate settings in Internet Explorer.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10525-4	The "Access data sources across domains" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Access data sources across domains (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1406	NaN	CCE-636	Setting Index #53: This policy setting allows you to manage whether Internet Explorer can access data from another security zone using the Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO).	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10539-5	The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow cut, copy or paste operations from the clipboard via script (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1407	NaN	CCE-1031	Setting Index #56: This policy setting allows you to manage whether scripts can perform a clipboard operation (for example, cut, copy, and paste) in the security zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10547-8	The "Allow binary and script behaviors" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/Administrator approved	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow binary and script behaviors (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2000	NaN	CCE-178	Setting Index #55: This policy setting allows you to manage dynamic binary and script behaviors.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10550-2	The "Disable the Security page" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Security Page (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel\SecurityTab	NaN	CCE-595	Setting Index #30: This policy setting removes the Security tab from the Internet Options dialog box.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10554-4	The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Script ActiveX controls marked safe for scripting (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1405	NaN	CCE-973	Setting Index #76: Restricted Sites Zone: Script ActiveX controls marked safe for scripting	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10561-9	The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Initialize and script ActiveX controls not marked as safe (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1201	NaN	CCE-586	Setting Index #41: This policy setting allows you to manage ActiveX controls not marked as safe.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10574-2	The "Protection From Zone Elevation: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Protection From Zone Elevation\Internet Explorer Processes	NaN	CCE-347	Setting Index #13: This setting controls the Internet Explorer restrictions on each Web page that it opens. These restrictions depend on the location of the Web page (such as Internet zone, Intranet zone, or Local Machine zone).	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10578-3	The "Restrict File Download: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict File Download\Internet Explorer Processes	NaN	CCE-668	Setting Index #11: When set to Enabled, file download prompts that are not user-initiated are blocked for Internet Explorer processes. When set to Disabled, file download prompts will occur that are not user-initiated for Internet Explorer processes.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10581-7	The "Automatically check for Internet Explorer updates" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Automatically check for Internet Explorer updates (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\NoUpdateCheck	NaN	CCE-1008	Setting Index #23: This policy setting allows you to manage whether Internet Explorer checks the Internet for newer versions.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10594-0	The "Turn off Crash Detection" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Crash Detection (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoCrashDetection	NaN	CCE-753	Setting Index #94: This policy setting allows you to manage the crash detection feature of add-on management in Internet Explorer.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10604-7	The "Scripted Window Security Restrictions: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Scripted Window Security Restrictions\Internet Explorer Processes	NaN	CCE-827	Setting Index #12: When set to Enabled, pop-up windows will not display in Windows Explorer or for Internet Explorer processes. When set to Disabled or Do not configure, scripts can create pop-up windows and windows that can hide other windows.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10605-4	The "Disable changing connection settings" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing connection settings (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel\Connection Settings	NaN	CCE-611	Setting Index #27: This policy setting removes users' ability to change dial-up settings.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10607-0	The "Turn off the Security Settings Check feature" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off the Security Settings Check feature (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Security\DisableSecuritySettingsCheck	NaN	CCE-1054	Setting Index #82: This policy setting turns off the Security Settings Check feature, which checks Internet Explorer security settings to determine when the settings put Internet Explorer at risk.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10609-6	The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Web sites in less privileged Web content zones can navigate into this zone (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2101	NaN	CCE-698	Setting Index #80: This policy setting allows you to manage whether Web sites from less privileged zones can navigate into this zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10620-3	The "Java permissions" machine setting should be configured correctly for the Restricted Sites Zone.	Custom/Disable Java/High safety/Low safety/Medium safety	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Java permissions (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1C00	NaN	CCE-1088	Setting Index #68: This policy setting allows you to manage permissions for Java applets.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10622-9	The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Web sites in less privileged Web content zones can navigate into this zone (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2101	NaN	CCE-724	Setting Index #49: This policy setting allows you to manage whether Web sites from less privileged zones can navigate into this zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10635-1	The "Mime Sniffing Safety Feature: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Mime Sniffing Safety Feature\Internet Explorer Processes	NaN	CCE-985	Setting Index #8: When set to Enabled, MIME sniffing will not promote a file of one type to a more dangerous file type. When set to Disabled, MIME sniffing configures Internet Explorer processes to allow the promotion of a file to a more dangerous file type.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10638-5	The "Disable changing Automatic Configuration settings" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing Automatic Configuration settings (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel\Autoconfig	NaN	CCE-471	Setting Index #26: This policy setting removes a user's ability to change automatically configured settings.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10642-7	The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Navigate windows and frames across different domains (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1607	NaN	CCE-995	Setting Index #71: This policy setting allows you to manage the opening of sub-frames and access of applications across different domains.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10651-8	The "Logon options" machine setting should be configured correctly for the Restricted Sites Zone.	Anonymous logon/Automatic logon only in Intranet zone/Automatic logon with current username and password/Prompt for user name and password	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Logon options (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1A00	NaN	CCE-128	Setting Index #70: This policy setting allows you to manage settings for logon options.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10664-1	The "Allow META REFRESH" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow META REFRESH (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1608	NaN	CCE-680	Setting Index #61: This policy setting allows you to manage whether a user's browser can be redirected to another Web page if the author of the Web page uses the Meta Refresh setting to redirect browsers to another Web page.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9230-4	The "Only use the ActiveX Installer Service for installation of ActiveX Controls" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Only use the ActiveX Installer Service for installation of ActiveX Controls (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\AxInstaller\OnlyUseAXISForActiveXInstall	NaN	NaN	Setting Index #85: This policy setting allows you to specify how ActiveX controls are installed.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9233-8	The "Prevent Bypassing SmartScreen Filter Warnings" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Prevent Bypassing SmartScreen Filter Warnings (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\PhishingFilter\PreventOverride	NaN	NaN	Setting Index #86: The SmartScreen Filter prevents users from navigating to and downloading from sites known to host malicious content, including Phishing or malicious software attacks.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9238-7	The "Prevent Deleting Cookies" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Cookies (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Privacy\CleanCookies	NaN	NaN	Setting Index #87: This policy setting is used to prevent users from deleting cookies.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9489-6	The "Use SmartScreen Filter" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Use SmartScreen Filter (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3\2301	NaN	NaN	Setting Index #17: This policy setting controls whether SmartScreen Filter scans pages in this zone for malicious content.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9504-2	The "Disable Per-User Installation of ActiveX Controls" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable Per-User Installation of ActiveX Controls (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Security\ActiveX\BlockNonAdminActiveXInstall	NaN	NaN	Setting Index #4: This policy setting allows you to disable the per-user installation of ActiveX controls.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9580-2	The "Turn off ActiveX opt-in prompt" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off ActiveX opt-in prompt (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\NoFirsttimeprompt	NaN	NaN	Setting Index #93: This policy setting allows you to turn off the ActiveX opt-in prompt.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9599-2	The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Only allow approved domains to use ActiveX controls without prompt (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3\120b	NaN	NaN	Setting Index #16: This policy setting controls whether or not the user is prompted to allow ActiveX controls to run on Web sites other than the Web site that installed the ActiveX control.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9652-9	The "Turn off Encryption Support" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Turn off Encryption Support (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\SecureProtocols	NaN	NaN	Setting Index #95: This policy setting allows you to turn off support for Transport Layer Security (TLS) 1.0, TLS 1.1, TLS 1.2, Secure Sockets Layer (SSL) 2.0 or SSL 3.0 in the browser.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9660-2	The "Intranet Sites: Include all network paths (UNCs)" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Sites: Include all network paths (UNCs) (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\UNCAsIntranet	NaN	CCE-876	Setting Index #50: This policy setting controls whether URLs representing UNCs are mapped into the local Intranet security zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9667-7	The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow drag and drop or copy and paste files (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1802	NaN	CCE-41	Setting Index #57: This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9669-3	The "Software channel permissions" machine setting should be configured correctly for the Restricted Sites Zone.	Low safety/Medium safety/High safety	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Software channel permissions (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1E05	NaN	CCE-520	Setting Index #78: This policy setting allows you to manage software channel permissions.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9673-5	The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Run .NET Framework-reliant components signed with Authenticode (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2001	NaN	CCE-563	Setting Index #74: This policy setting allows you to manage whether .NET Framework components that are signed with Authenticode can be executed from Internet Explorer.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9750-1	The "Allow status bar updates via script" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow status bar updates via script (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2103	NaN	CCE-914	Setting Index #37: This policy setting allows you to manage whether script is allowed to update the status bar within the zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9775-8	The "Turn off "Delete Browsing History" functionality" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Turn off "Delete Browsing History" functionality (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel\DisableDeleteBrowsingHistory	NaN	CCE-1010	Setting Index #81: This policy setting prevents users from performing the "Delete Browsing History" action in Internet Explorer.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9790-7	The "Allow installation of desktop items" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow installation of desktop items (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1800	NaN	CCE-355	Setting Index #35: This policy setting allows you to manage whether users can install Active Desktop items from this zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9792-3	The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Run ActiveX controls and plugins (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1200	NaN	CCE-841	Setting Index #75: This policy setting allows you to manage whether ActiveX controls and plug-ins can be run on pages from the specified zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9793-1	The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Only allow approved domains to use ActiveX controls without prompt (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\120b	NaN	NaN	Setting Index #14: This policy setting controls whether or not the user is prompted to allow ActiveX controls to run on Web sites other than the Web site that installed the ActiveX control.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'OnlyAllowApprovedDomainsToUseActiveXControlsWithoutPrompt_InternetZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31101'
CCE-9814-5	The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow script-initiated windows without size or position constraints (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2102	NaN	CCE-208	Setting Index #62: This policy setting allows you to manage restrictions on script-initiated pop-up windows and windows that include the title and status bars.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9821-0	The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Launching applications and files in an IFRAME (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1804	NaN	CCE-689	Setting Index #43: This policy setting allows you to manage whether applications may be run and files may be downloaded from an IFRAME reference in the HTML of the pages in this zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9832-7	The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Only allow approved domains to use ActiveX controls without prompt (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\120b	NaN	NaN	Setting Index #89: This policy setting controls whether or not the user is prompted to allow ActiveX controls to run on Web sites other than the Web site that installed the ActiveX control.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'OnlyAllowApprovedDomainsToUseActiveXControlsWithoutPrompt_RestrictedSitesZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31106'
CCE-9865-7	The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Navigate windows and frames across different domains (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1607	NaN	CCE-245	Setting Index #45: This policy setting allows you to manage the opening of sub-frames and access of applications across different domains.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9867-3	The "Use SmartScreen Filter" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Use SmartScreen Filter (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0\2301	NaN	NaN	Setting Index #19: This policy setting controls whether SmartScreen Filter scans pages in this zone for malicious content.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9869-9	The 'Software channel permissions' setting should be configured correctly for the Internet Zone.	Low safety/Medium safety/High safety	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Software channel permissions (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1E05	NaN	CCE-359	Setting Index #47: This policy setting allows you to manage software channel permissions. If you enable this policy setting, you can choose the following options from the drop-down box:	NaN	NaN	NaN
CCE-9882-2	The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow script-initiated windows without size or position constraints (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2102	NaN	CCE-280	Setting Index #36: This policy setting allows you to manage restrictions on script-initiated pop-up windows and windows that include the title and status bars.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9889-7	The "Prevent Deleting Temporary Internet Files" machine setting should be configured correctly.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Temporary Internet Files (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Privacy\CleanTIF	NaN	NaN	Setting Index #88: This policy setting is used to prevent users from deleting temporary Internet files.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9898-8	The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Run .NET Framework-reliant components not signed with Authenticode (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2004	NaN	CCE-678	Setting Index #73: Restricted Sites Zone: Run .NET Framework-reliant components not signed with Authenticode	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9917-6	The "Download signed ActiveX controls" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Download signed ActiveX controls (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1001	NaN	CCE-1013	Setting Index #39: This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9959-8	The "Automatic prompting for file downloads" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Automatic prompting for file downloads (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2200	NaN	CCE-175	Setting Index #64: This policy setting determines whether users will be prompted for non user-initiated file downloads.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9982-0	The "Allow font downloads" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow font downloads (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1604	NaN	CCE-882	Setting Index #59: This policy setting allows you to manage whether pages of the zone may download HTML fonts.	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10293-9	The "Allow active content from CDs to run on user machines" machine setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Allow active content from CDs to run on user machines (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\Settings\LOCALMACHINE_CD_UNLOCK	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9779-0	The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow scripting of Internet Explorer web browser control Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1206	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'AllowScriptingOfInternetExplorerWebBrowserControl_InternetZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31098'
CCE-10725-0	The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow scripting of Internet Explorer web browser control Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1206	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'AllowScriptingOfInternetExplorerWebBrowserControl_RestrictedSitesZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31103'
CCE-10685-6	The "Allow Scriptlets" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow Scriptlets (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1209	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10630-2	The "Allow Scriptlets" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow Scriptlets Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1209	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'AllowScriptlets_RestrictedSitesZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31061'
CCE-10055-2	The "Check for signatures on downloaded programs" machine setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Check for signatures on downloaded programs (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Download]CheckExeSignatures	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10590-8	The "Configure Delete Browsing History on exit" current user setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Configure Delete Browsing History on exit (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Privacy\ClearBrowsingHistoryOnExit	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'ConfigureDeleteBrowsingHistoryonexit_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31095'
CCE-9987-9	The "Disable Automatic Install of Internet Explorer components" setting should be configured correctly.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable Automatic Install of Internet Explorer components Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions\NoJITSetup	NaN	NaN	NaN	NaN	NaN	NaN
CCE-10634-4	The "Disable Periodic Check For Internet Explorer Software Updates" setting should be configured correctly.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable Periodic Check for Internet Explorer software updates Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions\NoUpdateCheck	NaN	NaN	NaN	NaN	NaN	NaN
CCE-10632-8	The "Disable showing the splash screen" setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable showing the splash screen (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions\NoSplash	NaN	NaN	NaN	NaN	NaN	NaN
CCE-10095-8	The "Download signed ActiveX controls" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled/prompt	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Download signed ActiveX controls (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3\1001	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9905-1	The "Allow third-party browser extensions" machine setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Allow third-party browser extensions (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Main\Enable Browser Extensions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10646-8	The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Include local directory path when uploading files to a server Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\160A	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'IncludeLocalDirectoryPathWhenUploadingFilesToAServer_InternetZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31099'
CCE-9781-6	The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Include local directory path when uploading files to a server Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\160A	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'IncludeLocalDirectoryPathWhenUploadingFilesToAServer_RestrictedSitesZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31104'
CCE-10603-9	The "Include updated Web site lists from Microsoft" machine setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Include updated Web site lists from Microsoft (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation\MSCompatibilityMode	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'IncludeUpdatedWebsiteListsFromMicrosoft_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31094'
CCE-10566-8	The "Java permissions" machine setting should be configured correctly for the Intranet Zone.	Custom/Disable Java/High safety/Low safety/Medium safety	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Java permissions (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\1C00	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10319-2	The "Java permissions" machine setting should be configured correctly for the Local Machine Zone.	Custom/Disable Java/High safety/Low safety/Medium safety	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Java permissions (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\1C00	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10597-3	The "Java permissions" machine setting should be configured correctly for the Locked-Down Internet Zone.	Custom/Disable Java/High safety/Low safety/Medium safety	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Java permissions (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3\1C00	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10342-4	The "Java permissions" machine setting should be configured correctly for the Locked-Down Intranet Zone.	Custom/Disable Java/High safety/Low safety/Medium safety	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Java permissions (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1\1C00	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10535-3	The "Java permissions" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	Custom/Disable Java/High safety/Low safety/Medium safety	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Java permissions (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0\1C00	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10275-6	The "Java permissions" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	Custom/Disable Java/High safety/Low safety/Medium safety	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Java permissions (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4\1C00	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10654-2	The "Java permissions" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	Custom/Disable Java/High safety/Low safety/Medium safety	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Java permissions (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2\1C00	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10696-3	The "Java permissions" machine setting should be configured correctly for the Trusted Sites Zone.	Custom/Disable Java/High safety/Low safety/Medium safety	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Java permissions (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\1C00	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10650-0	The "Launching programs and unsafe files" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Launching programs and unsafe files Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1806	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'LaunchingProgramsAndUnsafeFiles_InternetZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31100'
CCE-10744-1	The "Launching programs and unsafe files" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Launching programs and unsafe files Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1806	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'LaunchingProgramsAndUnsafeFiles_RestrictedSitesZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31105'
CCE-10672-4	The "Loose XAML files" machine setting should be configured correctly for the Internet Zone.	enabled/disabled/prompt	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Loose XAML files (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2402	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10178-2	The "Loose XAML files" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled/prompt	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Loose XAML files (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2402	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9870-7	The "Make proxy settings per-machine (rather than per-user)" machine setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Make proxy settings per-machine (rather than per-user) (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ProxySettingsPerUser	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10110-5	The "Prevent Deleting Web sites that the User has Visited" machine setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Web sites that the User has Visited (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Privacy\CleanHistory	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'PreventDeletingWebsitesthattheUserhasVisited_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31096'
CCE-10522-1	The "Prevent participation in the Customer Experience Improvement Program" machine setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Prevent participation in the Customer Experience Improvement Program (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\SQM\DisableCustomerImprovementProgram	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10641-9	The "Prevent performance of First Run Customize settings" machine setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Prevent performance of First Run Customize settings (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Main\DisableFirstRunCustomize	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10515-5	The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Run .NET Framework-reliant components not signed with Authenticode Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2004	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'RunNETFrameworkReliantComponentsNotSignedWithAuthenticode_InternetZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31035'
CCE-10625-2	The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Run .NET Framework-reliant components signed with Authenticode Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2001	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'RunNETFrameworkReliantComponentsSignedWithAuthenticode_InternetZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31036'
CCE-10425-7	The "Software channel permissions" machine setting should be configured correctly for the Internet Zone.	High safety/low safety/medium safety	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Software channel permissions (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1E05	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10595-7	The "Turn off changing the URL to be displayed for checking updates to Internet Explorer and Internet Tools" machine setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Component Updates\Periodic check for updates to Internet Explorer and Internet Tools\Turn off changing the URL to be displayed for checking updates to Internet Explorer and Internet Tools (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Main\Update_Check_Page	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9776-6	The "Turn off configuring the update check interval (in days)" machine setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Component Updates\Periodic check for updates to Internet Explorer and Internet Tools\Turn off configuring the update check interval (in days) (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Main\Update_Check_Interval	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14910-4	The "Update Check Interval" should be set to the appropriate number of days.	number of days	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Component Updates\Periodic check for updates to Internet Explorer and Internet Tools\Turn off configuring the update check interval (in days) - Update check interval (in days) (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Main\Update_Check_Interval	NaN	NaN	NaN	NaN	NaN	NaN
CCE-10434-9	The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Turn Off First-Run Opt-In (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1208	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10420-8	The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Turn Off First-Run Opt-In (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4!1208	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9885-5	The "Turn off InPrivate Browsing" machine setting should be configured correctly.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\InPrivate\Turn off InPrivate Browsing Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\Privacy\EnableInPrivateBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'TurnOffInPrivateBrowsing_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31097'
CCE-10540-3	The "Turn off Managing Phishing Filter" setting should be configured correctly.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Managing Phishing filter (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Internet Explorer\PhishingFilter\Enabled	NaN	NaN	NaN	NaN	NaN	NaN
CCE-9973-9	The "Turn off Managing SmartScreen Filter" machine setting should be configured correctly.	(1) enabled/disabled (2) on/off	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Managing SmartScreen Filter (2) Registry Key: HKLM\Software\Policies\Microsoft\Internet Explorer\PhishingFilter\EnabledV8	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'TurnoffManagingSmartScreenFilter_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31093'
CCE-10276-4	The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Turn on Cross-Site Scripting (XSS) Filter Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1409	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'TurnonCrossSiteScriptingFilter_InternetZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31102'
CCE-10105-5	The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Turn on Cross-Site Scripting (XSS) Filter Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1409	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	Rule 'TurnonCrossSiteScriptingFilter_RestrictedSitesZone_LocalComputer'	Definition 'oval:gov.nist.USGCB.ie8:def:31107'
CCE-10676-5	The "Turn on Protected Mode" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Turn on Protected Mode (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2500	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9945-7	The "Turn on Protected Mode" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Turn on Protected Mode (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2500	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10200-4	The "Userdata persistence" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Userdata persistence (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1606	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-9760-0	The "Userdata persistence" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	(1) GPO Settings: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Userdata persistence (2) Registry Key: HKLM\HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1606	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10829-0	The "Disable external branding of Internet Explorer" current user setting should be configured correctly.	NaN	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable external branding of Internet Explorer	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10701-1	The "Turn off page transitions" current user setting should be configured correctly.	NaN	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced settings\Browsing\Turn off page transitions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-10816-7	DEPRECATED. Previously: The "Turn on the Internet Connection Wizard Auto Detect" setting should be configured correctly. Note: According to Microsoft, does not apply to IE 8.	NaN	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced settings\Internet Connection Wizard Settings\Turn on the Internet Connection Wizard Auto Detect	NaN	NaN	NaN	NaN	NaN	NaN
CCE-10820-9	The "Download signed ActiveX controls" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled/prompt	(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Download signed ActiveX controls (2) Registry Key: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\1001	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16818-7	The "Customize User Agent String" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Customize User Agent String HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17008-4	The "Do not allow users to enable or disable add-ons" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Do not allow users to enable or disable add-ons HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17025-8	The "Enforce Full Screen Mode" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Enforce Full Screen Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16073-9	The "Disable changing ratings settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing ratings settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16360-0	The "Turn off Crash Detection" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Crash Detection HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17043-1	The "Prevent Internet Explorer Search box from displaying" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Prevent Internet Explorer Search box from displaying HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16917-7	The "Disable changing Temporary Internet files settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing Temporary Internet files settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17082-9	The "Turn off configuration of default behavior of new tab creation" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off configuration of default behavior of new tab creation HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17007-6	The "Disable Per-User Installation of ActiveX Controls" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable Per-User Installation of ActiveX Controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Security\ActiveX	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16902-9	The "Turn off tabbed browsing" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off tabbed browsing HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16218-0	The "Restrict changing the default search provider" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Restrict changing the default search provider HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17086-0	The "Disable changing color settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing color settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16950-8	The "Disable changing language settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing language settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17053-0	The "Prevent participation in the Customer Experience Improvement Program" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Prevent participation in the Customer Experience Improvement Program HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\SQM	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16511-8	The "Only use the ActiveX Installer Service for installation of ActiveX Controls" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Only use the ActiveX Installer Service for installation of ActiveX Controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\AxInstaller	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16893-0	The "Turn off page zooming functionality" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off page zooming functionality HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\ZOOM	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16478-0	The "Disable changing default browser check" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing default browser check HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16813-8	The "Disable changing Messaging settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing Messaging settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16919-3	The "Disable changing Advanced page settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing Advanced page settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16831-0	The "Turn off the activation of the quick pick menu" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off the activation of the quick pick menu HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\SearchScopes	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16236-2	The "Turn off Automatic Crash Recovery Prompt" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Automatic Crash Recovery Prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Recovery	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16906-0	The "Disable changing Calendar and Contact settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing Calendar and Contact settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16752-8	The "Turn off displaying the Internet Explorer Help Menu" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off displaying the Internet Explorer Help Menu HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16474-9	The "Disable changing proxy settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing proxy settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16113-3	The "Turn off Quick Tabs functionality" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Quick Tabs functionality HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16626-4	The "Disable caching of Auto-Proxy scripts" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable caching of Auto-Proxy scripts HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16090-3	The "Turn off ActiveX opt-in prompt" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off ActiveX opt-in prompt HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Ext	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16767-6	The "Turn off the auto-complete feature for web addresses" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off the auto-complete feature for web addresses HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Explorer\AutoComplete	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16756-9	The "Turn off Reopen Last Browsing Session" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Reopen Last Browsing Session HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Recovery	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16351-9	The "Turn off managing Pop-up filter level" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off managing Pop-up filter level HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16999-5	The "Disable changing home page settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing home page settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17003-5	The "Turn on menu bar by default" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn on menu bar by default HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16356-8	The "Disable changing link color settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing link color settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16285-9	The "Turn off configuration of window reuse" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off configuration of window reuse HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16977-1	The "Turn off Tab Grouping" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Tab Grouping HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17020-9	The "Set tab process growth" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Set tab process growth HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16267-7	The "Disable Internet Connection wizard" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable Internet Connection wizard HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16364-2	The "Prevent performance of First Run Customize settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Prevent performance of First Run Customize settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16232-1	The "Turn off Managing Pop-up Allow list" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Managing Pop-up Allow list HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16093-7	The "Configure new tab page default behavior" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Configure new tab page default behavior HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17018-3	The "Turn off pop-up management" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off pop-up management HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16088-7	The "Disable changing secondary home page settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing secondary home page settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\SecondaryStartPages	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16915-1	The "Prevent Bypassing SmartScreen Filter Warnings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Prevent Bypassing SmartScreen Filter Warnings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\PhishingFilter	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16897-1	The "Prevent "Fix settings" functionality" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Prevent "Fix settings" functionality HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Security	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16699-1	The "Restrict search providers to a specific list of providers" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Restrict search providers to a specific list of providers HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16263-6	The "Disable changing Automatic Configuration settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing Automatic Configuration settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16079-6	The "Disable changing accessibility settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing accessibility settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16620-7	The "Pop-up allow list" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Pop-up allow list HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\New Windows	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16749-4	The "Turn off configuration of tabbed browsing pop-up behavior" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off configuration of tabbed browsing pop-up behavior HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16406-1	The "Display error message on proxy script download failure" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Display error message on proxy script download failure HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17035-7	The "Turn off Managing SmartScreen Filter" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Managing SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\PhishingFilter	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16663-7	The "Turn on Suggested Sites" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn on Suggested Sites HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Suggested Sites	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17012-6	The "Disable changing font settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing font settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16794-0	The "Turn off Favorites bar" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Favorites bar HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\LinksBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16994-6	The "Turn off suggestions for all user-installed providers" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off suggestions for all user-installed providers HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\SearchScopes	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16227-1	The "Turn off the Security Settings Check feature" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off the Security Settings Check feature HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Security	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17031-6	The "Use Automatic Detection for dial-up connections" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Use Automatic Detection for dial-up connections HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16295-8	The "Disable changing connection settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable changing connection settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16091-1	The "Turn on Compatibility Logging" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn on Compatibility Logging HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\Feature_Enable_Compat_logging	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17030-8	The "Moving the menu bar above the navigation bar" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Moving the menu bar above the navigation bar HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Toolbar\WebBrowser	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16487-1	The "Add a specific list of search providers to the user's search provider list" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Add a specific list of search providers to the user's search provider list HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16840-1	The "Disable Import/Export Settings wizard" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Disable Import/Export Settings wizard HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16033-3	The "Turn off Accelerators" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Accelerators\Turn off Accelerators HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Activities	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16395-6	The "Deploy default Accelerators" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Accelerators\Deploy default Accelerators HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\GPActivities\ActivitiesDefaultInstall	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16527-4	The "Deploy non-default Accelerators" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Accelerators\Deploy non-default Accelerators HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\GPActivities\ActivitiesInstall	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16276-8	The "Use Policy Accelerators" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Accelerators\Use Policy Accelerators HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Activities\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16852-6	The "Deploy non-default Accelerators" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Accelerators\Deploy non-default Accelerators HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\GPActivities\ActivitiesInstall	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16874-0	The "Deploy default Accelerators" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Accelerators\Deploy default Accelerators HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\GPActivities\ActivitiesDefaultInstall	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16848-4	The "Use Policy Accelerators" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Accelerators\Use Policy Accelerators HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Activities\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16879-9	The "Turn off Accelerators" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Accelerators\Turn off Accelerators HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Activities	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15702-4	The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow scripting of Internet Explorer web browser control HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16370-9	The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Automatic prompting for ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15641-4	The "Allow active content over restricted protocols to access my computer" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow active content over restricted protocols to access my computer HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16299-0	The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow websites to open windows without address or status bars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16363-4	The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow websites to prompt for information using scripted windows HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15546-5	The "Disable .NET Framework Setup" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Disable .NET Framework Setup HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16391-5	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16268-5	The "XAML browser applications" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\XAML browser applications HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16537-3	The "XPS documents" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\XPS documents HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16294-1	The "Display mixed content" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Display mixed content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15647-1	The "Submit non-encrypted form data" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Submit non-encrypted form data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15569-7	The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15760-2	The "Use SmartScreen Filter" machine setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Use SmartScreen Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15727-1	The "Allow the printing of background colors and images" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Printing\Allow the printing of background colors and images HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16480-6	The "Restrict ActiveX Install: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict ActiveX Install\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16718-9	The "Restrict ActiveX Install: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict ActiveX Install\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15480-7	The "Prevent Deleting Favorites Site Data" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Favorites Site Data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Privacy	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15022-7	The "Prevent Deleting Passwords" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Passwords HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16001-0	The "Prevent Deleting InPrivate Filtering data" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting InPrivate Filtering data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Privacy	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15494-8	The "Configure Delete Browsing History on exit" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Configure Delete Browsing History on exit HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Privacy	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15242-1	The "Prevent Deleting Form Data" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Form Data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16149-7	The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Download unsigned ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16173-7	The "Allow binary and script behaviors" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow binary and script behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16197-6	The "Submit non-encrypted form data" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Submit non-encrypted form data HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15201-7	The "Download signed ActiveX controls" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Download signed ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16136-4	The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15986-3	The "Use Pop-up Blocker" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Use Pop-up Blocker HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15871-7	The "Open files based on content, not file extension" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Open files based on content, not file extension HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15686-9	The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Run ActiveX controls and plugins HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16050-7	The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Launching applications and files in an IFRAME HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15438-5	The "Display mixed content" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Display mixed content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15280-1	The "Scripting of Java applets" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Scripting of Java applets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15220-7	The "Access data sources across domains" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Access data sources across domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15825-3	The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Initialize and script ActiveX controls not marked as safe HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16078-8	The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Turn Off First-Run Opt-In HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15515-0	The "Allow active content over restricted protocols to access my computer" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow active content over restricted protocols to access my computer HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16182-8	The "Use SmartScreen Filter" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Use SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15968-1	The "Disable .NET Framework Setup" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Disable .NET Framework Setup HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15305-6	The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Include local directory path when uploading files to a server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16169-5	The "XPS documents" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\XPS documents HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15990-5	The "Userdata persistence" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Userdata persistence HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15922-8	The "Allow META REFRESH" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow META REFRESH HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15505-1	The "Allow Scriptlets" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow Scriptlets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15347-8	The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16083-8	The "Logon options" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Logon options HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15652-1	The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16028-3	The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Navigate windows and frames across different domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15809-7	The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15202-5	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15667-9	The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow script-initiated windows without size or position constraints HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16201-6	The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15783-4	The "Launching programs and unsafe files" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Launching programs and unsafe files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15931-9	The "XAML browser applications" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\XAML browser applications HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15675-2	The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15404-7	The "Loose XAML files" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Loose XAML files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15730-5	The "Automatic prompting for file downloads" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Automatic prompting for file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15356-9	The "Allow installation of desktop items" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow installation of desktop items HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16017-6	The "Allow font downloads" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow font downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16127-3	The "Allow file downloads" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15211-6	The "Java permissions" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Java permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16131-5	The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Automatic prompting for ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15510-1	The "Software channel permissions" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Software channel permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15223-1	The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow websites to prompt for information using scripted windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15199-3	The "Allow active scripting" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow active scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15279-3	The "Turn on Protected Mode" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Turn on Protected Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15518-4	The "Allow status bar updates via script" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow status bar updates via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16210-7	The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15263-7	The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow websites to open windows without address or status bars HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15254-6	The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow drag and drop or copy and paste files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15598-6	The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Script ActiveX controls marked safe for scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15881-6	The "Restrict File Download: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict File Download\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16775-9	The "Restrict File Download: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict File Download\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15578-8	The "Allow Scriptlets" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow Scriptlets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15649-7	The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow script-initiated windows without size or position constraints HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16338-6	The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Include local directory path when uploading files to a server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16602-5	The "Disable .NET Framework Setup" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Disable .NET Framework Setup HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16408-7	The "Software channel permissions" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Software channel permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15339-5	The "Allow installation of desktop items" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow installation of desktop items HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15317-1	The "Scripting of Java applets" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Scripting of Java applets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15532-5	The "Java permissions" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Java permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15724-8	The "Allow binary and script behaviors" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow binary and script behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15979-8	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15838-6	The "Display mixed content" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Display mixed content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15712-3	The "Userdata persistence" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Userdata persistence HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16168-7	The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Include local directory path when uploading files to a server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15734-7	The "Allow font downloads" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow font downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17028-2	The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15999-6	The "Allow font downloads" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow font downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15690-1	The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16063-0	The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Download unsigned ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16014-3	The "Turn on Protected Mode" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Turn on Protected Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15320-5	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16187-7	The "Launching programs and unsafe files" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Launching programs and unsafe files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16844-3	The "Loose XAML files" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Loose XAML files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16441-8	The "Allow installation of desktop items" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow installation of desktop items HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15622-4	The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15512-7	The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Initialize and script ActiveX controls not marked as safe HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16204-0	The "Allow Scriptlets" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow Scriptlets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16983-9	The "Use Pop-up Blocker" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Use Pop-up Blocker HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16177-8	The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Navigate windows and frames across different domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16174-5	The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16015-0	The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Initialize and script ActiveX controls not marked as safe HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15102-7	The "Use SmartScreen Filter" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Use SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16429-3	The "Display mixed content" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Display mixed content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16067-1	The "Automatic prompting for file downloads" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Automatic prompting for file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15067-2	The "Submit non-encrypted form data" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Submit non-encrypted form data HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16809-6	The "Logon options" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Logon options HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16444-2	The "Scripting of Java applets" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Scripting of Java applets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16505-0	The "Allow active scripting" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow active scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15963-2	The "Allow binary and script behaviors" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow binary and script behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15976-4	The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow drag and drop or copy and paste files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16215-6	The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Initialize and script ActiveX controls not marked as safe HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16117-4	The "Logon options" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Logon options HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15747-9	The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow websites to open windows without address or status bars HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16430-1	The "Open files based on content, not file extension" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Open files based on content, not file extension HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15327-0	The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16219-8	The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16561-3	The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15323-9	The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15882-4	The "Disable .NET Framework Setup" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Disable .NET Framework Setup HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15636-4	The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Download unsigned ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15873-3	The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15351-0	The "Launching programs and unsafe files" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Launching programs and unsafe files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16642-1	The "Allow Scriptlets" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow Scriptlets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16457-4	The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16898-9	The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow scripting of Internet Explorer web browser control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15773-5	The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Turn Off First-Run Opt-In HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15538-2	The "Disable .NET Framework Setup" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Disable .NET Framework Setup HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16036-6	The "Download signed ActiveX controls" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Download signed ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16522-5	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16314-7	The "Open files based on content, not file extension" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Open files based on content, not file extension HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16184-4	The "Java permissions" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Java permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15500-2	The "Access data sources across domains" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Access data sources across domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16129-9	The "Allow binary and script behaviors" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow binary and script behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16407-9	The "Turn on Protected Mode" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Turn on Protected Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16270-1	The "Submit non-encrypted form data" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Submit non-encrypted form data HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15692-7	The "Java permissions" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Java permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15096-1	The "Loose XAML files" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Loose XAML files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15091-2	The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16335-2	The "Allow active scripting" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow active scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16562-1	The "Automatic prompting for file downloads" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Automatic prompting for file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15105-0	The "Download signed ActiveX controls" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Download signed ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15599-4	The "Submit non-encrypted form data" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Submit non-encrypted form data HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15066-4	The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Launching applications and files in an IFRAME HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15200-9	The "XAML browser applications" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\XAML browser applications HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16459-0	The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow script-initiated windows without size or position constraints HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16181-0	The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15926-9	The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow websites to open windows without address or status bars HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15601-8	The "Logon options" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Logon options HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16040-8	The "Launching programs and unsafe files" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Launching programs and unsafe files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15693-5	The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow script-initiated windows without size or position constraints HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16434-3	The "Allow status bar updates via script" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow status bar updates via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16234-7	The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Run ActiveX controls and plugins HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16281-8	The "Scripting of Java applets" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Scripting of Java applets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16479-8	The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Download unsigned ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16374-1	The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16226-3	The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow script-initiated windows without size or position constraints HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16206-5	The "Allow Scriptlets" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow Scriptlets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16466-5	The "XPS documents" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\XPS documents HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17227-0	The "Allow font downloads" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow font downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16176-0	The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16361-8	The "Open files based on content, not file extension" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Open files based on content, not file extension HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16816-1	The "Disable .NET Framework Setup" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Disable .NET Framework Setup HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15876-6	The "Allow META REFRESH" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow META REFRESH HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15832-9	The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16296-6	The "Software channel permissions" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Software channel permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16426-9	The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Script ActiveX controls marked safe for scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16449-1	The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow websites to open windows without address or status bars HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15076-3	The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow websites to prompt for information using scripted windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16220-6	The "Allow file downloads" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15044-1	The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Turn Off First-Run Opt-In HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16211-5	The "Display mixed content" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Display mixed content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15862-6	The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16180-2	The "Allow status bar updates via script" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow status bar updates via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16359-2	The "XAML browser applications" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\XAML browser applications HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15558-0	The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Script ActiveX controls marked safe for scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16452-5	The "Automatic prompting for file downloads" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Automatic prompting for file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15620-8	The "Software channel permissions" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Software channel permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16381-6	The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow websites to prompt for information using scripted windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16024-2	The "Allow META REFRESH" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow META REFRESH HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17238-7	The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow websites to open windows without address or status bars HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16492-1	The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Initialize and script ActiveX controls not marked as safe HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16344-4	The "Allow binary and script behaviors" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow binary and script behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16071-3	The "Launching programs and unsafe files" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Launching programs and unsafe files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16476-4	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16280-0	The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16190-1	The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Script ActiveX controls marked safe for scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16095-2	The "Allow status bar updates via script" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow status bar updates via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17252-8	The "Userdata persistence" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Userdata persistence HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15212-4	The "Software channel permissions" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Software channel permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16155-4	The "Java permissions" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Java permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15204-1	The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow websites to open windows without address or status bars HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15567-1	The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Launching applications and files in an IFRAME HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16325-3	The "Allow installation of desktop items" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow installation of desktop items HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15966-5	The "Access data sources across domains" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Access data sources across domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16291-7	The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Initialize and script ActiveX controls not marked as safe HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15975-6	The "Use Pop-up Blocker" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Use Pop-up Blocker HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15678-6	The "Userdata persistence" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Userdata persistence HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15243-9	The "Java permissions" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Java permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16080-4	The "Allow file downloads" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15935-0	The "Loose XAML files" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Loose XAML files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15992-1	The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16331-1	The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Run ActiveX controls and plugins HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16075-4	The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow websites to prompt for information using scripted windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16311-3	The "Allow Scriptlets" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow Scriptlets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17231-2	The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Download unsigned ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15722-2	The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Include local directory path when uploading files to a server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15742-0	The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16448-3	The "XPS documents" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\XPS documents HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15984-8	The "Allow status bar updates via script" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow status bar updates via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16134-9	The "Userdata persistence" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Userdata persistence HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16926-8	The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16272-7	The "Allow binary and script behaviors" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow binary and script behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16473-1	The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Include local directory path when uploading files to a server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16450-9	The "Allow active scripting" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow active scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17062-1	The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Turn Off First-Run Opt-In HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15812-1	The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow drag and drop or copy and paste files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16265-1	The "XAML browser applications" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\XAML browser applications HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16200-8	The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Script ActiveX controls marked safe for scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15912-9	The "Launching programs and unsafe files" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Launching programs and unsafe files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16065-5	The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Navigate windows and frames across different domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15816-2	The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Automatic prompting for ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16346-9	The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16062-2	The "Allow active scripting" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow active scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17077-9	The "Submit non-encrypted form data" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Submit non-encrypted form data HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15638-0	The "Allow META REFRESH" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow META REFRESH HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17243-7	The "Allow installation of desktop items" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow installation of desktop items HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16486-3	The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow drag and drop or copy and paste files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16417-8	The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15463-3	The "Logon options" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Logon options HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16035-8	The "Allow active scripting" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow active scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16055-6	The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16732-0	The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow drag and drop or copy and paste files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16501-9	The "Loose XAML files" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Loose XAML files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16307-1	The "Use SmartScreen Filter" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Use SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16580-3	The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Run ActiveX controls and plugins HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15703-2	The "Use Pop-up Blocker" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Use Pop-up Blocker HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16481-4	The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Turn Off First-Run Opt-In HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17247-8	The "Download signed ActiveX controls" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Download signed ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16556-3	The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15036-7	The "Allow installation of desktop items" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow installation of desktop items HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16482-2	The "XAML browser applications" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\XAML browser applications HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16442-6	The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow drag and drop or copy and paste files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15981-4	The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17146-2	The "Scripting of Java applets" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Scripting of Java applets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16949-0	The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Include local directory path when uploading files to a server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15525-9	The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow websites to prompt for information using scripted windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17021-7	The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15755-2	The "Scripting of Java applets" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Scripting of Java applets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17177-7	The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15754-5	The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow scripting of Internet Explorer web browser control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16213-1	The "Allow font downloads" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow font downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16352-7	The "XAML browser applications" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\XAML browser applications HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15778-4	The "Submit non-encrypted form data" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Submit non-encrypted form data HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16970-6	The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow websites to prompt for information using scripted windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15324-7	The "Disable .NET Framework Setup" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Disable .NET Framework Setup HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15942-6	The "XPS documents" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\XPS documents HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16217-2	The "Use Pop-up Blocker" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Use Pop-up Blocker HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15574-7	The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Run ActiveX controls and plugins HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16333-7	The "Download signed ActiveX controls" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Download signed ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15432-8	The "Open files based on content, not file extension" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Open files based on content, not file extension HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16446-7	The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Launching applications and files in an IFRAME HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16045-7	The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Automatic prompting for ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17066-2	The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15233-0	The "Automatic prompting for file downloads" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Automatic prompting for file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16222-2	The "Access data sources across domains" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Access data sources across domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15997-0	The "Allow file downloads" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15941-8	The "Loose XAML files" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Loose XAML files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15634-9	The "Allow file downloads" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15228-0	The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15301-5	The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Navigate windows and frames across different domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15679-4	The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Automatic prompting for ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16221-4	The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Navigate windows and frames across different domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15939-2	The "XPS documents" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\XPS documents HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16390-7	The "Allow file downloads" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17225-4	The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Launching applications and files in an IFRAME HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16339-4	The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Navigate windows and frames across different domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16305-5	The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16321-2	The "Download signed ActiveX controls" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Download signed ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15551-5	The "Userdata persistence" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Userdata persistence HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16453-3	The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Run ActiveX controls and plugins HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16258-6	The "Allow status bar updates via script" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow status bar updates via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15322-1	The "Use SmartScreen Filter" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Use SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16386-5	The "Turn on Protected Mode" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Turn on Protected Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16495-4	The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow script-initiated windows without size or position constraints HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17118-1	The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Automatic prompting for ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16415-2	The "XPS documents" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\XPS documents HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17180-1	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16366-7	The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Automatic prompting for ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16223-0	The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Turn Off First-Run Opt-In HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15506-9	The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Download unsigned ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15626-5	The "Access data sources across domains" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Access data sources across domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16560-5	The "Open files based on content, not file extension" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Open files based on content, not file extension HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17141-3	The "Allow META REFRESH" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow META REFRESH HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16399-8	The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16326-1	The "Display mixed content" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Display mixed content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15100-1	The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow scripting of Internet Explorer web browser control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15318-9	The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17032-4	The "Turn on Protected Mode" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Turn on Protected Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16198-4	The "Allow META REFRESH" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow META REFRESH HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15255-3	The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17078-7	The "Software channel permissions" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Software channel permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15513-5	The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16455-8	The "Use SmartScreen Filter" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Use SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15539-0	The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15603-4	The "Turn on Protected Mode" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Turn on Protected Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16576-1	The "Use SmartScreen Filter" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Use SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15328-8	The "Display mixed content" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Display mixed content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16412-9	The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Launching applications and files in an IFRAME HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16420-2	The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow scripting of Internet Explorer web browser control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16761-9	The "Automatic prompting for file downloads" current user setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Automatic prompting for file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16041-6	The "Access data sources across domains" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Access data sources across domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15646-3	The "Logon options" current user setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Logon options HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16011-9	The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Script ActiveX controls marked safe for scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15632-3	The "Use Pop-up Blocker" current user setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Use Pop-up Blocker HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15589-5	The "Allow font downloads" current user setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow font downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16082-0	The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow scripting of Internet Explorer web browser control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16645-4	The "Restrict ActiveX Install: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict ActiveX Install\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15869-1	The "Restrict ActiveX Install: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict ActiveX Install\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16491-3	The "Restrict ActiveX Install: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict ActiveX Install\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16032-5	The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Application Compatibility\Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt\Internet Explorer Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\Feature_Enable_Script_Paste_URLAction_If_Prompt	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15508-5	The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Application Compatibility\Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\Feature_Enable_Script_Paste_URLAction_If_Prompt	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15781-8	The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Application Compatibility\Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15482-3	The "Object Caching Protection: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Object Caching Protection\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15483-1	The "Object Caching Protection: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Object Caching Protection\Internet Explorer Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15487-2	The "Object Caching Protection: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Object Caching Protection\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16683-5	The "Prevent setting of the code download path for each machine" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Corporate Settings\Code Download\Prevent setting of the code download path for each machine HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16121-6	The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Navigate windows and frames across different domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15177-9	The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Turn Off First-Run Opt-In HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16081-2	The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Automatic prompting for ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16085-3	The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15787-5	The "Software channel permissions" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Software channel permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15961-6	The "Allow binary and script behaviors" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow binary and script behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15989-7	The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15215-7	The "Allow Scriptlets" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow Scriptlets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15446-8	The "Java permissions" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Java permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15748-7	The "Download signed ActiveX controls" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Download signed ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15479-9	The "Allow installation of desktop items" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow installation of desktop items HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15162-1	The "Disable .NET Framework Setup" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Disable .NET Framework Setup HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15385-8	The "Allow META REFRESH" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow META REFRESH HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15171-2	The "Launching programs and unsafe files" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Launching programs and unsafe files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16044-0	The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15988-9	The "Turn on Protected Mode" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Turn on Protected Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15858-4	The "Open files based on content, not file extension" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Open files based on content, not file extension HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15195-1	The "Userdata persistence" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Userdata persistence HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16122-4	The "Allow file downloads" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15153-0	The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Run ActiveX controls and plugins HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15157-1	The "Allow active content over restricted protocols to access my computer" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow active content over restricted protocols to access my computer HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16116-6	The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Script ActiveX controls marked safe for scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15800-6	The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow drag and drop or copy and paste files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16108-3	The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow scripting of Internet Explorer web browser control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15902-0	The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Include local directory path when uploading files to a server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16025-9	The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15761-0	The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15668-7	The "Allow font downloads" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow font downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16064-8	The "XPS documents" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\XPS documents HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15196-9	The "Allow active scripting" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow active scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16054-9	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15193-6	The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow websites to prompt for information using scripted windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15757-8	The "Access data sources across domains" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Access data sources across domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16144-8	The "Display mixed content" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Display mixed content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15241-3	The "XAML browser applications" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\XAML browser applications HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16076-2	The "Use SmartScreen Filter" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Use SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16003-6	The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow script-initiated windows without size or position constraints HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15602-6	The "Scripting of Java applets" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Scripting of Java applets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16031-7	The "Logon options" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Logon options HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16126-5	The "Allow status bar updates via script" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow status bar updates via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16140-6	The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16100-0	The "Submit non-encrypted form data" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Submit non-encrypted form data HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15185-2	The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Launching applications and files in an IFRAME HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16099-4	The "Loose XAML files" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Loose XAML files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15880-8	The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16059-8	The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Download unsigned ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15565-5	The "Use Pop-up Blocker" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Use Pop-up Blocker HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15752-9	The "Automatic prompting for file downloads" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Automatic prompting for file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15237-1	The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Initialize and script ActiveX controls not marked as safe HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15959-0	The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Local Machine Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow websites to open windows without address or status bars HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16692-6	The "Network Protocol Lockdown: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16696-7	The "Network Protocol Lockdown: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16670-2	The "Network Protocol Lockdown: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16648-8	The "Consistent Mime Handling: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Consistent Mime Handling\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16653-8	The "Consistent Mime Handling: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Consistent Mime Handling\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17095-1	The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Automatic prompting for ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17092-8	The "Submit non-encrypted form data" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Submit non-encrypted form data HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16988-8	The "Automatic prompting for file downloads" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Automatic prompting for file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17014-2	The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow websites to open windows without address or status bars HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17054-8	The "Display mixed content" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Display mixed content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17076-1	The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Include local directory path when uploading files to a server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17023-3	The "Use Pop-up Blocker" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Use Pop-up Blocker HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17006-8	The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16611-6	The "XPS documents" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\XPS documents HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16734-6	The "Allow file downloads" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16196-8	The "Logon options" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Logon options HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17107-4	The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow script-initiated windows without size or position constraints HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16817-9	The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow websites to prompt for information using scripted windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16159-6	The "Java permissions" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Java permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16494-7	The "Open files based on content, not file extension" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Open files based on content, not file extension HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16118-2	The "Allow binary and script behaviors" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow binary and script behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16905-2	The "Userdata persistence" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Userdata persistence HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17073-8	The "Access data sources across domains" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Access data sources across domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16974-8	The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17063-9	The "Use SmartScreen Filter" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Use SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16154-7	The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow drag and drop or copy and paste files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17010-0	The "Allow active scripting" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow active scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16878-1	The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16156-2	The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Navigate windows and frames across different domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16496-2	The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16240-4	The "Download signed ActiveX controls" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Download signed ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16209-9	The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17079-5	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16135-6	The "Software channel permissions" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Software channel permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16738-7	The "Allow active content over restricted protocols to access my computer" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow active content over restricted protocols to access my computer HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16855-9	The "Disable .NET Framework Setup" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Disable .NET Framework Setup HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16139-8	The "Loose XAML files" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Loose XAML files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17124-9	The "Allow META REFRESH" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow META REFRESH HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17085-2	The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Launching applications and files in an IFRAME HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16107-5	The "Allow installation of desktop items" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow installation of desktop items HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17088-6	The "Turn on Protected Mode" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Turn on Protected Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16109-1	The "Allow status bar updates via script" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow status bar updates via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16709-8	The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Initialize and script ActiveX controls not marked as safe HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16860-9	The "Launching programs and unsafe files" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Launching programs and unsafe files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16153-9	The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16832-8	The "Allow font downloads" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow font downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16130-7	The "Scripting of Java applets" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Scripting of Java applets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17050-6	The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Download unsigned ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16152-1	The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Run ActiveX controls and plugins HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17117-3	The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17059-7	The "XAML browser applications" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\XAML browser applications HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16503-5	The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Turn Off First-Run Opt-In HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16507-6	The "Allow Scriptlets" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Allow Scriptlets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17099-3	The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Restricted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Script ActiveX controls marked safe for scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16336-0	The "Prevent configuration of search from the Address bar" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Searching\Prevent configuration of search from the Address bar HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15739-6	The "Turn on the Internet Connection Wizard Auto Detect" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Internet Connection Wizard Settings\Turn on the Internet Connection Wizard Auto Detect HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Connection Wizard	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16925-0	The "Turn off sending URLs as UTF-8 (requires restart)" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\URL Encoding\Turn off sending URLs as UTF-8 (requires restart) HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16089-5	The "Add-on List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on Management\Add-on List HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Ext	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16711-4	The "Deny all add-ons unless specifically allowed in the Add-on List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on Management\Deny all add-ons unless specifically allowed in the Add-on List HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Ext	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16847-6	The "Add-on Management: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on Management\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16341-0	The "Add-on Management: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on Management\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16125-7	The "Mime Sniffing Safety Feature: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Mime Sniffing Safety Feature\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16367-5	The "Mime Sniffing Safety Feature: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Mime Sniffing Safety Feature\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16239-6	The "Mime Sniffing Safety Feature: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Mime Sniffing Safety Feature\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15947-5	The "Allow binary and script behaviors" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow binary and script behaviors HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16904-5	The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Launching applications and files in an IFRAME HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16659-5	The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16251-1	The "Turn on Protected Mode" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Turn on Protected Mode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16026-7	The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16864-1	The "Userdata persistence" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Userdata persistence HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16046-5	The "Allow font downloads" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow font downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16826-0	The "Loose XAML files" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Loose XAML files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15190-2	The "Allow file downloads" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16243-8	The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Download unsigned ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16230-5	The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16637-1	The "Allow Scriptlets" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow Scriptlets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16347-7	The "Loose XAML files" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Loose XAML files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15719-8	The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Script ActiveX controls marked safe for scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16565-4	The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Navigate windows and frames across different domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16719-7	The "Software channel permissions" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Software channel permissions HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16178-6	The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16667-8	The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16650-4	The "Use Pop-up Blocker" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Use Pop-up Blocker HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15807-1	The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16425-1	The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16539-9	The "Allow status bar updates via script" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow status bar updates via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16857-5	The "Allow binary and script behaviors" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow binary and script behaviors HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16807-0	The "Logon options" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Logon options HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16233-9	The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15949-1	The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Turn Off First-Run Opt-In HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14981-5	The "Logon options" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Logon options HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16160-4	The "Allow binary and script behaviors" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow binary and script behaviors HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16039-0	The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Script ActiveX controls marked safe for scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15710-7	The "Userdata persistence" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Userdata persistence HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16668-6	The "Disable .NET Framework Setup" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Disable .NET Framework Setup HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16581-1	The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow scripting of Internet Explorer web browser control HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15682-8	The "Download signed ActiveX controls" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Download signed ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16614-0	The "Allow installation of desktop items" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow installation of desktop items HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16543-1	The "Automatic prompting for file downloads" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Automatic prompting for file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16959-9	The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow websites to prompt for information using scripted windows HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16086-1	The "Open files based on content, not file extension" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Open files based on content, not file extension HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15798-2	The "Download signed ActiveX controls" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Download signed ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16601-7	The "Loose XAML files" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Loose XAML files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16803-9	The "Software channel permissions" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Software channel permissions HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15811-3	The "Turn on Protected Mode" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Turn on Protected Mode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16468-1	The "Submit non-encrypted form data" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Submit non-encrypted form data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16616-5	The "Software channel permissions" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Software channel permissions HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15897-2	The "XAML browser applications" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\XAML browser applications HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16454-1	The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow websites to prompt for information using scripted windows HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16445-9	The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Initialize and script ActiveX controls not marked as safe HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16548-0	The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Automatic prompting for ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15080-5	The "Display mixed content" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Display mixed content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15644-8	The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Launching applications and files in an IFRAME HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16029-1	The "Allow active scripting" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow active scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16733-8	The "Allow font downloads" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow font downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15728-9	The "Disable .NET Framework Setup" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Disable .NET Framework Setup HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15304-9	The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Initialize and script ActiveX controls not marked as safe HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16535-7	The "Allow active scripting" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow active scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16519-1	The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow websites to open windows without address or status bars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15653-9	The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow drag and drop or copy and paste files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15842-8	The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16947-4	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15906-1	The "Disable .NET Framework Setup" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Disable .NET Framework Setup HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16954-0	The "Logon options" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Logon options HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16876-5	The "XPS documents" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\XPS documents HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15970-7	The "Launching programs and unsafe files" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Launching programs and unsafe files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16793-2	The "Allow binary and script behaviors" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow binary and script behaviors HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16471-5	The "Scripting of Java applets" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Scripting of Java applets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16499-6	The "Allow META REFRESH" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow META REFRESH HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15864-2	The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15847-7	The "Allow active scripting" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow active scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16841-9	The "Disable .NET Framework Setup" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Disable .NET Framework Setup HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16077-0	The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Download unsigned ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15012-8	The "Allow status bar updates via script" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow status bar updates via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15666-1	The "Allow Scriptlets" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow Scriptlets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16104-2	The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Include local directory path when uploading files to a server HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15960-8	The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Download unsigned ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16009-3	The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Automatic prompting for ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16895-5	The "Open files based on content, not file extension" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Open files based on content, not file extension HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16225-5	The "Turn on Protected Mode" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Turn on Protected Mode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16205-7	The "Allow file downloads" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16546-4	The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Launching applications and files in an IFRAME HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16932-6	The "Submit non-encrypted form data" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Submit non-encrypted form data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16891-4	The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Turn Off First-Run Opt-In HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16886-4	The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16179-4	The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Script ActiveX controls marked safe for scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16246-1	The "Disable .NET Framework Setup" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Disable .NET Framework Setup HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16567-0	The "Userdata persistence" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Userdata persistence HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15813-9	The "Launching programs and unsafe files" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Launching programs and unsafe files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15987-1	The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Script ActiveX controls marked safe for scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16533-2	The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Navigate windows and frames across different domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16069-7	The "Allow file downloads" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15934-3	The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15393-2	The "Open files based on content, not file extension" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Open files based on content, not file extension HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16859-1	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16643-9	The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Initialize and script ActiveX controls not marked as safe HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15208-2	The "XAML browser applications" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\XAML browser applications HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16737-9	The "Download signed ActiveX controls" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Download signed ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15596-0	The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Navigate windows and frames across different domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15909-5	The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16195-0	The "XPS documents" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\XPS documents HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15362-7	The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow websites to open windows without address or status bars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15766-9	The "XAML browser applications" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\XAML browser applications HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15983-0	The "Allow installation of desktop items" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow installation of desktop items HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16447-5	The "Allow installation of desktop items" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow installation of desktop items HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15694-3	The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16617-3	The "Access data sources across domains" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Access data sources across domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16730-4	The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15017-7	The "Loose XAML files" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Loose XAML files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16229-7	The "Allow installation of desktop items" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow installation of desktop items HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16784-1	The "Userdata persistence" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Userdata persistence HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16043-2	The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Navigate windows and frames across different domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16729-6	The "Allow META REFRESH" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow META REFRESH HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16318-8	The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15915-2	The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Automatic prompting for ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16189-3	The "Display mixed content" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Display mixed content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15600-0	The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Include local directory path when uploading files to a server HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16373-3	The "Allow Scriptlets" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow Scriptlets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15957-4	The "Use Pop-up Blocker" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Use Pop-up Blocker HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16854-2	The "Allow installation of desktop items" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow installation of desktop items HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15952-5	The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow scripting of Internet Explorer web browser control HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16553-0	The "Open files based on content, not file extension" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Open files based on content, not file extension HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16922-7	The "Allow status bar updates via script" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow status bar updates via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16577-9	The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Launching applications and files in an IFRAME HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15639-8	The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Download unsigned ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15971-5	The "Access data sources across domains" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Access data sources across domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17009-2	The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Run ActiveX controls and plugins HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16517-5	The "Allow Scriptlets" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow Scriptlets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16943-3	The "Download signed ActiveX controls" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Download signed ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16224-8	The "Display mixed content" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Display mixed content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16004-4	The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16724-7	The "Use Pop-up Blocker" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Use Pop-up Blocker HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16092-9	The "Logon options" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Logon options HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16595-1	The "Userdata persistence" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Userdata persistence HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16274-3	The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Automatic prompting for ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16824-5	The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow websites to open windows without address or status bars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16607-4	The "Allow font downloads" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow font downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16571-2	The "XPS documents" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\XPS documents HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16963-1	The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16188-5	The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16105-9	The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Turn Off First-Run Opt-In HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15948-3	The "Scripting of Java applets" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Scripting of Java applets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16985-4	The "Allow active scripting" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow active scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16096-0	The "Allow status bar updates via script" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow status bar updates via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16830-2	The "Allow status bar updates via script" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow status bar updates via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16110-9	The "Launching programs and unsafe files" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Launching programs and unsafe files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16957-3	The "Display mixed content" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Display mixed content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15851-9	The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow websites to prompt for information using scripted windows HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16490-5	The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Script ActiveX controls marked safe for scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16935-9	The "XAML browser applications" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\XAML browser applications HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15642-2	The "Allow file downloads" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15892-3	The "Allow active scripting" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow active scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16320-4	The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Download unsigned ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16635-5	The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15732-1	The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16392-3	The "Display mixed content" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Display mixed content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15956-6	The "Software channel permissions" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Software channel permissions HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16972-2	The "Allow binary and script behaviors" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow binary and script behaviors HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15954-1	The "Allow META REFRESH" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow META REFRESH HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16631-4	The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Initialize and script ActiveX controls not marked as safe HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16228-9	The "Use Pop-up Blocker" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Use Pop-up Blocker HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15891-5	The "XPS documents" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\XPS documents HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16782-5	The "Allow META REFRESH" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow META REFRESH HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16371-7	The "Scripting of Java applets" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Scripting of Java applets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16828-6	The "Scripting of Java applets" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Scripting of Java applets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15944-2	The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Run ActiveX controls and plugins HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16600-9	The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow script-initiated windows without size or position constraints HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15901-2	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16789-0	The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Include local directory path when uploading files to a server HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16714-8	The "Access data sources across domains" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Access data sources across domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16851-8	The "Allow font downloads" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow font downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16547-2	The "XAML browser applications" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\XAML browser applications HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16094-5	The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow drag and drop or copy and paste files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16624-9	The "Launching programs and unsafe files" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Launching programs and unsafe files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15198-5	The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow drag and drop or copy and paste files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15016-9	The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow script-initiated windows without size or position constraints HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16460-8	The "Automatic prompting for file downloads" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Automatic prompting for file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16575-3	The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Include local directory path when uploading files to a server HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16953-2	The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Initialize and script ActiveX controls not marked as safe HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16465-7	The "XPS documents" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\XPS documents HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15920-2	The "Submit non-encrypted form data" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Submit non-encrypted form data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16861-7	The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16872-4	The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16362-6	The "Use Pop-up Blocker" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Use Pop-up Blocker HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16880-7	The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15794-1	The "Allow META REFRESH" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow META REFRESH HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16552-2	The "Allow Scriptlets" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow Scriptlets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16987-0	The "Turn on Protected Mode" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Turn on Protected Mode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15900-4	The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Automatic prompting for ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15594-5	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16549-8	The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow websites to prompt for information using scripted windows HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16020-0	The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow websites to open windows without address or status bars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15021-9	The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16375-8	The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16238-8	The "Software channel permissions" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Software channel permissions HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16613-2	The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow websites to prompt for information using scripted windows HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15689-3	The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow script-initiated windows without size or position constraints HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16298-2	The "Automatic prompting for file downloads" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Automatic prompting for file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15850-1	The "Allow font downloads" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Allow font downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16382-4	The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow scripting of Internet Explorer web browser control HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15904-6	The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16030-9	The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow drag and drop or copy and paste files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16839-3	The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow websites to open windows without address or status bars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16242-0	The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16976-3	The "Turn on Protected Mode" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Turn on Protected Mode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16212-3	The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Turn Off First-Run Opt-In HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15697-6	The "Submit non-encrypted form data" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Submit non-encrypted form data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14982-3	The "Automatic prompting for file downloads" machine setting should be configured correctly for the Locked-Down Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone\Automatic prompting for file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16867-4	The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Include local directory path when uploading files to a server HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16965-6	The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow drag and drop or copy and paste files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16193-5	The "Scripting of Java applets" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Scripting of Java applets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16416-0	The "Submit non-encrypted form data" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Submit non-encrypted form data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15980-6	The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Run ActiveX controls and plugins HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16013-5	The "Launching programs and unsafe files" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Launching programs and unsafe files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15681-0	The "Access data sources across domains" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Access data sources across domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16498-8	The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16811-2	The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow scripting of Internet Explorer web browser control HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16387-3	The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Navigate windows and frames across different domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16622-3	The "Logon options" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Logon options HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16605-8	The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17036-5	The "Access data sources across domains" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Access data sources across domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16948-2	The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow script-initiated windows without size or position constraints HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16798-1	The "Open files based on content, not file extension" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Open files based on content, not file extension HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16951-6	The "Allow file downloads" machine setting should be configured correctly for the Locked-Down Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\Allow file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16540-7	The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15674-5	The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Run ActiveX controls and plugins HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16504-3	The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16885-6	The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Locked-Down Restricted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone\Allow script-initiated windows without size or position constraints HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16627-2	The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Launching applications and files in an IFRAME HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16380-8	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16288-3	The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Turn Off First-Run Opt-In HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16342-8	The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Allow scripting of Internet Explorer web browser control HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15985-5	The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Run ActiveX controls and plugins HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16513-4	The "Automatic prompting for file downloads" machine setting should be configured correctly for the Locked-Down Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone\Automatic prompting for file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16183-6	The "Loose XAML files" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Loose XAML files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16010-1	The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Locked-Down Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16524-1	The "File size limits for Local Machine zone" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Persistence Behavior\File size limits for Local Machine zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Persistence\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15903-8	The "File size limits for Intranet zone" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Persistence Behavior\File size limits for Intranet zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Persistence\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16555-5	The "File size limits for Internet zone" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Persistence Behavior\File size limits for Internet zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Persistence\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16317-0	The "File size limits for Restricted Sites zone" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Persistence Behavior\File size limits for Restricted Sites zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Persistence\4	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15776-8	The "File size limits for Trusted Sites zone" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Persistence Behavior\File size limits for Trusted Sites zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Persistence\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15841-0	The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow websites to prompt for information using scripted windows HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15360-1	The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Run ActiveX controls and plugins HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15705-7	The "XAML browser applications" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\XAML browser applications HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15619-0	The "Use SmartScreen Filter" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Use SmartScreen Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15295-9	The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14928-6	The "Allow active content over restricted protocols to access my computer" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow active content over restricted protocols to access my computer HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15818-8	The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15802-2	The "Allow binary and script behaviors" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow binary and script behaviors HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15762-8	The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Turn Off First-Run Opt-In HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15168-8	The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Download unsigned ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14930-2	The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15775-0	The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Include local directory path when uploading files to a server HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15082-1	The "Turn on Protected Mode" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Turn on Protected Mode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15534-1	The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow scripting of Internet Explorer web browser control HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15771-9	The "Scripting of Java applets" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Scripting of Java applets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15714-9	The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Launching applications and files in an IFRAME HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15219-9	The "Access data sources across domains" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Access data sources across domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15866-7	The "Display mixed content" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Display mixed content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15908-7	The "Allow active scripting" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow active scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15846-9	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15300-7	The "Software channel permissions" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Software channel permissions HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15580-4	The "Allow META REFRESH" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow META REFRESH HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15899-8	The "Allow Scriptlets" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow Scriptlets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15753-7	The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Script ActiveX controls marked safe for scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15489-8	The "Allow font downloads" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow font downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15234-8	The "Submit non-encrypted form data" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Submit non-encrypted form data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14934-4	The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14926-0	The "Automatic prompting for file downloads" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Automatic prompting for file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15057-3	The "Userdata persistence" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Userdata persistence HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14959-1	The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15894-9	The "Allow file downloads" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15621-6	The "Allow installation of desktop items" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow installation of desktop items HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15286-8	The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow drag and drop or copy and paste files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15840-2	The "Loose XAML files" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Loose XAML files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15476-5	The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow websites to open windows without address or status bars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15612-5	The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15758-6	The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15780-0	The "Launching programs and unsafe files" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Launching programs and unsafe files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15084-7	The "Logon options" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Logon options HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15784-2	The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Initialize and script ActiveX controls not marked as safe HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15767-7	The "Use Pop-up Blocker" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Use Pop-up Blocker HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15736-2	The "Open files based on content, not file extension" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Open files based on content, not file extension HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15814-7	The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Navigate windows and frames across different domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14943-5	The "Disable .NET Framework Setup" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Disable .NET Framework Setup HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15824-6	The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow script-initiated windows without size or position constraints HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15793-3	The "XPS documents" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\XPS documents HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15930-1	The "Allow status bar updates via script" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow status bar updates via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15819-6	The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Intranet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Automatic prompting for ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16551-4	The "Add-on Management: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on Management\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16269-3	The "Add-on List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on Management\Add-on List HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Ext	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15982-2	The "Deny all add-ons unless specifically allowed in the Add-on List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on Management\Deny all add-ons unless specifically allowed in the Add-on List HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Ext	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16921-9	The "Add-on Management: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on Management\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15886-5	The "Scripted Window Security Restrictions: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Scripted Window Security Restrictions\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16462-4	The "Scripted Window Security Restrictions: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Scripted Window Security Restrictions\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16467-3	The "Scripted Window Security Restrictions: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Scripted Window Security Restrictions\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15804-8	The "Use Policy List of Internet Explorer 7 sites" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Use Policy List of Internet Explorer 7 sites HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation\PolicyList	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15822-0	The "Turn off Compatibility View button" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Turn off Compatibility View button HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14932-8	The "Turn on Internet Explorer 7 Standards Mode" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Turn on Internet Explorer 7 Standards Mode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15575-4	The "Turn on Internet Explorer Standards Mode for Local Intranet" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Turn on Internet Explorer Standards Mode for Local Intranet HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15707-3	The "Turn off Compatibility View" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Turn off Compatibility View HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16656-1	The "Turn off Data Execution Prevention" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Turn off Data Execution Prevention HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16661-1	The "Turn off Data URI Support" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Turn off Data URI Support HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DATAURI	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15896-4	The "Turn off Windows Search AutoComplete" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\AutoComplete\Turn off Windows Search AutoComplete HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\WindowsSearch	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15859-2	The "Launching programs and unsafe files" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Launching programs and unsafe files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16385-7	The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Download unsigned ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16053-1	The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15450-0	The "Automatic prompting for file downloads" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Automatic prompting for file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16437-6	The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow script-initiated windows without size or position constraints HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15735-4	The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Run ActiveX controls and plugins HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16433-5	The "Use SmartScreen Filter" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Use SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16424-4	The "Software channel permissions" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Software channel permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16428-5	The "Download signed ActiveX controls" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Download signed ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15460-9	The "Allow active content over restricted protocols to access my computer" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow active content over restricted protocols to access my computer HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16057-2	The "Loose XAML files" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Loose XAML files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16398-0	The "Allow META REFRESH" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow META REFRESH HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16328-7	The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Navigate windows and frames across different domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15673-7	The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow websites to open windows without address or status bars HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16435-0	The "Java permissions" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Java permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16397-2	The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Automatic prompting for ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15913-7	The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15696-8	The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16248-7	The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow drag and drop or copy and paste files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16114-1	The "Use Pop-up Blocker" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Use Pop-up Blocker HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16115-8	The "Display mixed content" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Display mixed content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16202-4	The "Allow Scriptlets" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow Scriptlets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15421-1	The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Initialize and script ActiveX controls not marked as safe HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16330-3	The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Launching applications and files in an IFRAME HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16411-1	The "Scripting of Java applets" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Scripting of Java applets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15854-3	The "Allow status bar updates via script" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow status bar updates via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15464-1	The "Turn on Protected Mode" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Turn on Protected Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16358-4	The "Userdata persistence" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Userdata persistence HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15443-5	The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Script ActiveX controls marked safe for scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16216-4	The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Include local directory path when uploading files to a server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16103-4	The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15640-6	The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15827-9	The "Open files based on content, not file extension" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Open files based on content, not file extension HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16119-0	The "Allow font downloads" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow font downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15456-7	The "Allow file downloads" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15868-3	The "Submit non-encrypted form data" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Submit non-encrypted form data HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15823-8	The "XPS documents" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\XPS documents HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15995-4	The "Allow binary and script behaviors" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow binary and script behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16102-6	The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow websites to prompt for information using scripted windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16422-8	The "Allow active scripting" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow active scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16431-9	The "Access data sources across domains" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Access data sources across domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15447-6	The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16261-0	The "XAML browser applications" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\XAML browser applications HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16066-3	The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Turn Off First-Run Opt-In HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15974-9	The "Allow installation of desktop items" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow installation of desktop items HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16357-6	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16379-0	The "Logon options" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Logon options HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16132-3	The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow scripting of Internet Explorer web browser control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16264-4	The "Disable .NET Framework Setup" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Disable .NET Framework Setup HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15591-1	The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Intranet Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16440-0	The "Protection From Zone Elevation: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Protection From Zone Elevation\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16541-5	The "Protection From Zone Elevation: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Protection From Zone Elevation\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16568-8	The "Protection From Zone Elevation: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Protection From Zone Elevation\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15434-4	The "Prevent users from configuring background color" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Display settings\General Colors\Prevent users from configuring background color HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15685-1	The "Prevent the use of Windows colors" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Display settings\General Colors\Prevent the use of Windows colors HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15417-9	The "Prevent users from configuring text color" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Display settings\General Colors\Prevent users from configuring text color HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16931-8	The "Local Machine Zone Restricted Protocols" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Restricted Protocols Per Security Zone\Local Machine Zone Restricted Protocols HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\RestrictedProtocols	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17080-3	The "Intranet Zone Restricted Protocols" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Restricted Protocols Per Security Zone\Intranet Zone Restricted Protocols HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\RestrictedProtocols	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16944-1	The "Internet Zone Restricted Protocols" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Restricted Protocols Per Security Zone\Internet Zone Restricted Protocols HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\RestrictedProtocols	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16662-9	The "Restricted Sites Zone Restricted Protocols" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Restricted Protocols Per Security Zone\Restricted Sites Zone Restricted Protocols HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\RestrictedProtocols	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16097-8	The "Trusted Sites Zone Restricted Protocols" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Restricted Protocols Per Security Zone\Trusted Sites Zone Restricted Protocols HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\RestrictedProtocols	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16327-9	The "Mime Sniffing Safety Feature: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Mime Sniffing Safety Feature\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16322-0	The "Mime Sniffing Safety Feature: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Mime Sniffing Safety Feature\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15785-9	The "Turn on script debugging" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Browsing\Turn on script debugging HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15996-2	The "Turn off friendly http error messages" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Browsing\Turn off friendly http error messages HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16754-4	The "Turn on the display of a notification about every script error" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Browsing\Turn on the display of a notification about every script error HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16758-5	The "Turn off configuring underline links" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Browsing\Turn off configuring underline links HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15779-2	The "Turn off smooth scrolling" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Browsing\Turn off smooth scrolling HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16302-2	The "Information Bar: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Information Bar\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16324-6	The "Information Bar: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Information Bar\Internet Explorer Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16421-0	The "Information Bar: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Information Bar\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15507-7	The "Allow active content over restricted protocols to access my computer" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow active content over restricted protocols to access my computer HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15751-1	The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow websites to open windows without address or status bars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16145-5	The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow websites to prompt for information using scripted windows HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15520-0	The "Use SmartScreen Filter" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Use SmartScreen Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15314-8	The "Disable .NET Framework Setup" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Disable .NET Framework Setup HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16151-3	The "Allow META REFRESH" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow META REFRESH HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16138-0	The "XAML browser applications" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\XAML browser applications HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16150-5	The "Scripting of Java applets" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Scripting of Java applets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16006-9	The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15277-7	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15292-6	The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Run ActiveX controls and plugins HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16141-4	The "Allow file downloads" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15309-8	The "Allow binary and script behaviors" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow binary and script behaviors HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15311-4	The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Script ActiveX controls marked safe for scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15268-6	The "Display mixed content" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Display mixed content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15643-0	The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow scripting of Internet Explorer web browser control HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15993-9	The "Allow active scripting" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Allow active scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16143-0	The "Submit non-encrypted form data" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Submit non-encrypted form data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16123-2	The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Automatic prompting for ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15629-9	The "XPS documents" machine setting should be configured correctly for the Internet Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\XPS documents HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16260-2	The "Turn off Data URI Support" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Turn off Data URI Support HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DATAURI	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16785-8	The "Turn on Internet Explorer Standards Mode for Local Intranet" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Turn on Internet Explorer Standards Mode for Local Intranet HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16666-0	The "Turn off Compatibility View" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Turn off Compatibility View HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16652-0	The "Use Policy List of Internet Explorer 7 sites" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Use Policy List of Internet Explorer 7 sites HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation\PolicyList	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16679-3	The "Turn off Compatibility View button" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Turn off Compatibility View button HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16674-4	The "Turn on Internet Explorer 7 Standards Mode" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Turn on Internet Explorer 7 Standards Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16022-6	The "Include updated Web site lists from Microsoft" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Compatibility View\Include updated Web site lists from Microsoft HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15946-7	The "Use UTF-8 for mailto links" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Use UTF-8 for mailto links HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Protocols\Mailto	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16690-0	The "Disable the Advanced page" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Advanced page HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15805-5	The "Send internationalized domain names" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Send internationalized domain names HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15803-0	The "Prevent ignoring certificate errors" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Prevent ignoring certificate errors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16703-1	The "Disable the Content page" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Content page HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16604-1	The "Disable the General page" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the General page HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16554-8	The "Disable the Privacy page" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Privacy page HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16694-2	The "Disable the Connections page" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Connections page HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16599-3	The "Disable the Programs page" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Programs page HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16461-6	The "Disable the Security page" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Security page HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16034-1	The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16147-1	The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow drag and drop or copy and paste files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15857-6	The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Script ActiveX controls marked safe for scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15733-9	The "Disable .NET Framework Setup" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Disable .NET Framework Setup HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15729-7	The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16597-7	The "XPS documents" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\XPS documents HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16681-9	The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow script-initiated windows without size or position constraints HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16016-8	The "XAML browser applications" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\XAML browser applications HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16629-8	The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow websites to prompt for information using scripted windows HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16707-2	The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Initialize and script ActiveX controls not marked as safe HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16702-3	The "Download signed ActiveX controls" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Download signed ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16508-4	The "Allow installation of desktop items" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow installation of desktop items HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16583-7	The "Software channel permissions" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Software channel permissions HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16423-6	The "Allow META REFRESH" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow META REFRESH HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15893-1	The "Allow status bar updates via script" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow status bar updates via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16559-7	The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Download unsigned ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16658-7	The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Launching applications and files in an IFRAME HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15770-1	The "Userdata persistence" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Userdata persistence HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15709-9	The "Allow file downloads" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15699-2	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15713-1	The "Loose XAML files" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Loose XAML files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16319-6	The "Turn on Protected Mode" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Turn on Protected Mode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15953-3	The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Turn Off First-Run Opt-In HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15706-5	The "Submit non-encrypted form data" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Submit non-encrypted form data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16544-9	The "Allow binary and script behaviors" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow binary and script behaviors HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16165-3	The "Allow font downloads" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow font downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15967-3	The "Allow active content over restricted protocols to access my computer" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow active content over restricted protocols to access my computer HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16640-5	The "Automatic prompting for file downloads" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Automatic prompting for file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15708-1	The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow websites to open windows without address or status bars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15716-4	The "Use Pop-up Blocker" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Use Pop-up Blocker HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16633-0	The "Display mixed content" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Display mixed content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15721-4	The "Allow Scriptlets" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow Scriptlets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16628-0	The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16262-8	The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16012-7	The "Allow active scripting" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow active scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16451-7	The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Automatic prompting for ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16257-8	The "Scripting of Java applets" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Scripting of Java applets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16579-5	The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Include local directory path when uploading files to a server HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16163-8	The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16514-2	The "Launching programs and unsafe files" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Launching programs and unsafe files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16578-7	The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow scripting of Internet Explorer web browser control HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16266-9	The "Logon options" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Logon options HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16680-1	The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16623-1	The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16526-6	The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Navigate windows and frames across different domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16403-8	The "Access data sources across domains" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Access data sources across domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16619-9	The "Open files based on content, not file extension" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Open files based on content, not file extension HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16404-6	The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Local Machine Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone\Run ActiveX controls and plugins HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15795-8	The "Binary Behavior Security Restriction: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Binary Behavior Security Restriction\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15914-5	The "Binary Behavior Security Restriction: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Binary Behavior Security Restriction\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16443-4	The "Admin-approved behaviors" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Binary Behavior Security Restriction\Admin-approved behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16192-7	The "Binary Behavior Security Restriction: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Binary Behavior Security Restriction\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16256-0	The "Turn Off First-Run Opt-In" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Turn Off First-Run Opt-In HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15428-6	The "Allow installation of desktop items" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow installation of desktop items HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15688-5	The "XAML browser applications" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\XAML browser applications HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16058-0	The "Run .NET Framework-reliant components not signed with Authenticode" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16023-4	The "Allow font downloads" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow font downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16231-3	The "Allow script-initiated windows without size or position constraints" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow script-initiated windows without size or position constraints HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15962-4	The "Script ActiveX controls marked safe for scripting" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Script ActiveX controls marked safe for scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16137-2	The "Initialize and script ActiveX controls not marked as safe" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Initialize and script ActiveX controls not marked as safe HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15943-4	The "Only allow approved domains to use ActiveX controls without prompt" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16185-1	The "Navigate windows and frames across different domains" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Navigate windows and frames across different domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16235-4	The "XPS documents" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\XPS documents HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15344-5	The "Turn on Cross-Site Scripting (XSS) Filter" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15372-6	The "Allow drag and drop or copy and paste files" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow drag and drop or copy and paste files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15958-2	The "Automatic prompting for file downloads" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Automatic prompting for file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15371-8	The "Web sites in less privileged Web content zones can navigate into this zone" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16002-8	The "Loose XAML files" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Loose XAML files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16186-9	The "Userdata persistence" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Userdata persistence HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15573-9	The "Allow active content over restricted protocols to access my computer" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow active content over restricted protocols to access my computer HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15661-2	The "Allow active scripting" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow active scripting HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16282-6	The "Allow video and animation on a Web page that uses a legacy media player" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16133-1	The "Download unsigned ActiveX controls" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Download unsigned ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16194-3	The "Include local directory path when uploading files to a server" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Include local directory path when uploading files to a server HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15369-2	The "Disable .NET Framework Setup" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Disable .NET Framework Setup HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16354-3	The "Allow websites to prompt for information using scripted windows" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow websites to prompt for information using scripted windows HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16007-7	The "Allow websites to open windows without address or status bars" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow websites to open windows without address or status bars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15370-0	The "Access data sources across domains" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Access data sources across domains HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15921-0	The "Use Pop-up Blocker" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Use Pop-up Blocker HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15628-1	The "Logon options" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Logon options HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15564-8	The "Automatic prompting for ActiveX controls" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Automatic prompting for ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15998-8	The "Submit non-encrypted form data" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Submit non-encrypted form data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16300-6	The "Software channel permissions" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Software channel permissions HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15542-4	The "Allow META REFRESH" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow META REFRESH HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16146-3	The "Allow binary and script behaviors" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow binary and script behaviors HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16365-9	The "Run ActiveX controls and plugins" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Run ActiveX controls and plugins HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16345-1	The "Allow Scriptlets" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow Scriptlets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15820-4	The "Turn on Protected Mode" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Turn on Protected Mode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15635-6	The "Display mixed content" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Display mixed content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15348-6	The "Use SmartScreen Filter" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Use SmartScreen Filter HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16278-4	The "Allow file downloads" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow file downloads HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16098-6	The "Launching applications and files in an IFRAME" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Launching applications and files in an IFRAME HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16348-5	The "Allow status bar updates via script" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow status bar updates via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16304-8	The "Download signed ActiveX controls" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Download signed ActiveX controls HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16199-2	The "Run .NET Framework-reliant components signed with Authenticode" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15648-9	The "Scripting of Java applets" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Scripting of Java applets HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16018-4	The "Launching programs and unsafe files" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Launching programs and unsafe files HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16208-1	The "Open files based on content, not file extension" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Open files based on content, not file extension HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15441-9	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15994-7	The "Allow scripting of Internet Explorer web browser control" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow scripting of Internet Explorer web browser control HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16245-3	The "Allow cut, copy or paste operations from the clipboard via script" machine setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16072-1	The "Use HTTP 1.1" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Use HTTP 1.1 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16254-5	The "Do not save encrypted pages to disk" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Do not save encrypted pages to disk HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16142-2	The "Do not allow resetting Internet Explorer settings" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Do not allow resetting Internet Explorer settings HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15878-2	The "Empty Temporary Internet Files folder when browser is closed" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Empty Temporary Internet Files folder when browser is closed HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Cache	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16827-8	The "Turn off ClearType" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Turn off ClearType HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15872-5	The "Play animations in web pages" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Play animations in web pages HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15877-4	The "Use HTTP 1.1 through proxy connections" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Use HTTP 1.1 through proxy connections HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16241-2	The "Turn on Caret Browsing support" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Turn on Caret Browsing support HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\CaretBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15863-4	The "Play sounds in web pages" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Play sounds in web pages HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16027-5	The "Intranet Zone Template" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone Template HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Intranet Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16805-4	The "Local Machine Zone Template" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone Template HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Local Machine Zone Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15885-7	The "Locked-Down Internet Zone Template" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone Template HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Lockdown Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15828-7	The "Turn on automatic detection of the intranet" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Turn on automatic detection of the intranet HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16439-2	The "Trusted Sites Zone Template" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone Template HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Trusted Sites Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16644-7	The "Locked-Down Intranet Zone Template" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone Template HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Intranet Lockdown Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16657-9	The "Restricted Sites Zone Template" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone Template HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Restricted Sites Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16800-5	The "Locked-Down Restricted Sites Zone Template" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone Template HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Restricted Sites Lockdown Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16255-2	The "Locked-Down Local Machine Zone Template" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone Template HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Local Machine Zone Lockdown Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16458-2	The "Locked-Down Trusted Sites Zone Template" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone Template HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Trusted Sites Lockdown Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16630-6	The "Intranet Sites: Include all sites that bypass the proxy server" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Sites: Include all sites that bypass the proxy server HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15815-4	The "Site to Zone Assignment List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Site to Zone Assignment List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16158-8	The "Intranet Sites: Include all local (intranet) sites not listed in other zones" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Sites: Include all local (intranet) sites not listed in other zones HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15829-5	The "Turn on Information bar notification for intranet content" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Turn on Information bar notification for intranet content HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16780-9	The "Turn on Warn about Certificate Address Mismatch" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Turn on Warn about Certificate Address Mismatch HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16384-0	The "Internet Zone Template" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone Template HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15660-4	The "Pop-up allow list" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Pop-up allow list HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\New Windows	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16166-1	The "Turn off configuration of tabbed browsing pop-up behavior" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off configuration of tabbed browsing pop-up behavior HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15789-1	The "Configure new tab page default behavior" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Configure new tab page default behavior HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16005-1	The "Turn off the auto-complete feature for web addresses" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off the auto-complete feature for web addresses HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Explorer\AutoComplete	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16106-7	The "Turn off tabbed browsing" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off tabbed browsing HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16349-3	The "Turn on Compatibility Logging" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn on Compatibility Logging HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\Feature_Enable_Compat_logging	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15563-0	The "Turn off configuration of default behavior of new tab creation" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off configuration of default behavior of new tab creation HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15749-5	The "Set tab process growth" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Set tab process growth HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16353-5	The "Turn off displaying the Internet Explorer Help Menu" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off displaying the Internet Explorer Help Menu HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16388-1	The "Restrict changing the default search provider" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Restrict changing the default search provider HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15397-3	The "Turn on menu bar by default" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn on menu bar by default HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16290-9	The "Turn off suggestions for all user-installed providers" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off suggestions for all user-installed providers HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\SearchScopes	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15704-0	The "Turn off Favorites bar" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Favorites bar HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\LinksBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15545-7	The "Turn off the activation of the quick pick menu" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off the activation of the quick pick menu HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\SearchScopes	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15414-6	The "Turn off Automatic Crash Recovery Prompt" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Automatic Crash Recovery Prompt HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Recovery	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16191-9	The "Turn off configuration of window reuse" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off configuration of window reuse HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15419-5	The "Turn off Quick Tabs functionality" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Quick Tabs functionality HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16271-9	The "Turn off Managing Pop-up Allow list" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Managing Pop-up Allow list HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15655-4	The "Add a specific list of search providers to the user's search provider list" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Add a specific list of search providers to the user's search provider list HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15917-8	The "Restrict search providers to a specific list of providers" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Restrict search providers to a specific list of providers HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16393-1	The "Turn off page zooming functionality" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off page zooming functionality HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\ZOOM	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16249-5	The "Enforce Full Screen Mode" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Enforce Full Screen Mode HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15403-9	The "Customize User Agent String" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Customize User Agent String HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15613-3	The "Prevent Internet Explorer Search box from displaying" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Prevent Internet Explorer Search box from displaying HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16378-2	The "Turn off managing Pop-up filter level" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off managing Pop-up filter level HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16060-6	The "Turn off Reopen Last Browsing Session" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off Reopen Last Browsing Session HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Recovery	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16148-9	The "Turn off pop-up management" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Turn off pop-up management HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16309-7	The "Turn off picture display" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Multimedia\Turn off picture display HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16573-8	The "Turn off automatic image resizing" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Multimedia\Turn off automatic image resizing HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16569-6	The "Allow the display of image download placeholders" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Multimedia\Allow the display of image download placeholders HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16688-4	The "Turn off smart image dithering" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Multimedia\Turn off smart image dithering HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Internet Explorer	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-14923-7	The "Turn off InPrivate Browsing" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\InPrivate\Turn off InPrivate Browsing HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Privacy	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15465-8	The "InPrivate Filtering Threshold" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\InPrivate\InPrivate Filtering Threshold HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Safety\PrivacIE	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15725-5	The "Do not collect InPrivate Filtering data" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\InPrivate\Do not collect InPrivate Filtering data HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Safety\PrivacIE	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15855-0	The "Disable toolbars and extensions when InPrivate Browsing starts" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\InPrivate\Disable toolbars and extensions when InPrivate Browsing starts HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Safety\PrivacIE	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15337-9	The "Turn off InPrivate Filtering" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\InPrivate\Turn off InPrivate Filtering HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Safety\PrivacIE	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16928-4	The "Turn off InPrivate Filtering" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\InPrivate\Turn off InPrivate Filtering HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Safety\PrivacIE	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16810-4	The "Disable toolbars and extensions when InPrivate Browsing starts" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\InPrivate\Disable toolbars and extensions when InPrivate Browsing starts HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Safety\PrivacIE	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16171-1	The "Do not collect InPrivate Filtering data" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\InPrivate\Do not collect InPrivate Filtering data HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Safety\PrivacIE	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16164-6	The "InPrivate Filtering Threshold" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\InPrivate\InPrivate Filtering Threshold HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Safety\PrivacIE	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15910-3	The "Prevent users from choosing default text size" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Display settings\Prevent users from choosing default text size HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16286-7	The "Download unsigned ActiveX controls" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Download unsigned ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16693-4	The "Allow Scriptlets" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow Scriptlets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16802-1	The "Allow websites to prompt for information using scripted windows" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow websites to prompt for information using scripted windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16701-5	The "Allow binary and script behaviors" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow binary and script behaviors HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16493-9	The "Turn on Protected Mode" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Turn on Protected Mode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16815-3	The "Logon options" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Logon options HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16723-9	The "Disable .NET Framework Setup" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Disable .NET Framework Setup HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16520-9	The "Use Pop-up Blocker" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Use Pop-up Blocker HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16313-9	The "Do not prompt for client certificate selection when no certificates or only one certificate exists." current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Do not prompt for client certificate selection when no certificates or only one certificate exists. HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16621-5	The "Automatic prompting for file downloads" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Automatic prompting for file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16586-0	The "Allow drag and drop or copy and paste files" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow drag and drop or copy and paste files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16308-9	The "Allow installation of desktop items" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow installation of desktop items HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16731-2	The "XPS documents" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\XPS documents HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16157-0	The "Download signed ActiveX controls" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Download signed ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16506-8	The "Allow websites to open windows without address or status bars" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow websites to open windows without address or status bars HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15852-7	The "Loose XAML files" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Loose XAML files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16647-0	The "Turn on Cross-Site Scripting (XSS) Filter" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Turn on Cross-Site Scripting (XSS) Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16368-3	The "Allow META REFRESH" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow META REFRESH HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16048-1	The "Submit non-encrypted form data" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Submit non-encrypted form data HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15833-7	The "Run ActiveX controls and plugins" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Run ActiveX controls and plugins HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16207-3	The "Run .NET Framework-reliant components signed with Authenticode" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Run .NET Framework-reliant components signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16634-8	The "Userdata persistence" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Userdata persistence HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16509-2	The "XAML browser applications" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\XAML browser applications HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16747-8	The "Automatic prompting for ActiveX controls" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Automatic prompting for ActiveX controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15845-1	The "Web sites in less privileged Web content zones can navigate into this zone" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Web sites in less privileged Web content zones can navigate into this zone HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15837-8	The "Allow font downloads" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow font downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16289-1	The "Allow file downloads" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow file downloads HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16008-5	The "Access data sources across domains" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Access data sources across domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16639-7	The "Allow script-initiated windows without size or position constraints" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow script-initiated windows without size or position constraints HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16355-0	The "Turn Off First-Run Opt-In" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Turn Off First-Run Opt-In HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16766-8	The "Initialize and script ActiveX controls not marked as safe" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Initialize and script ActiveX controls not marked as safe HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16564-7	The "Software channel permissions" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Software channel permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16791-6	The "Allow video and animation on a Web page that uses a legacy media player" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow video and animation on a Web page that uses a legacy media player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16771-8	The "Navigate windows and frames across different domains" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Navigate windows and frames across different domains HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16084-6	The "Allow cut, copy or paste operations from the clipboard via script" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow cut, copy or paste operations from the clipboard via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15835-2	The "Scripting of Java applets" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Scripting of Java applets HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16686-8	The "Only allow approved domains to use ActiveX controls without prompt" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Only allow approved domains to use ActiveX controls without prompt HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16021-8	The "Open files based on content, not file extension" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Open files based on content, not file extension HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16806-2	The "Allow status bar updates via script" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow status bar updates via script HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16170-3	The "Launching applications and files in an IFRAME" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Launching applications and files in an IFRAME HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16612-4	The "Use SmartScreen Filter" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Use SmartScreen Filter HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16038-2	The "Run .NET Framework-reliant components not signed with Authenticode" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Run .NET Framework-reliant components not signed with Authenticode HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15848-5	The "Allow active content over restricted protocols to access my computer" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow active content over restricted protocols to access my computer HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16277-6	The "Allow scripting of Internet Explorer web browser control" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow scripting of Internet Explorer web browser control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16377-4	The "Allow active scripting" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Allow active scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16625-6	The "Display mixed content" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Display mixed content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16409-5	The "Include local directory path when uploading files to a server" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Include local directory path when uploading files to a server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15965-7	The "Script ActiveX controls marked safe for scripting" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Script ActiveX controls marked safe for scripting HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16250-3	The "Java permissions" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Java permissions HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16167-9	The "Launching programs and unsafe files" current user setting should be configured correctly for the Trusted Sites Zone.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone\Launching programs and unsafe files HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15849-3	The "Prevent the configuration of cipher strength update information URLs" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Component Updates\Help Menu > About Internet Explorer\Prevent the configuration of cipher strength update information URLs HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15964-0	The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Application Compatibility\Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\Feature_Enable_Script_Paste_URLAction_If_Prompt	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15991-3	The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Application Compatibility\Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15969-9	The "Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Application Compatibility\Enable cut, copy or paste operations from the clipboard if URLACTION_SCRIPT_PASTE is set to Prompt\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\Feature_Enable_Script_Paste_URLAction_If_Prompt	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16956-5	The "Hide the Command Bar" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Hide the Command Bar HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16722-1	The "Disable customizing browser toolbar buttons" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Disable customizing browser toolbar buttons HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16952-4	The "Auto-hide the Toolbars" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Auto-hide the Toolbars HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16051-5	The "Customize Command Labels" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Customize Command Labels HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16930-0	The "Set location of Stop and Refresh buttons" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Set location of Stop and Refresh buttons HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16700-7	The "Turn off Developer Tools" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Turn off Developer Tools HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\IEDevTools	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16863-3	The "Turn off toolbar upgrade tool" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Turn off toolbar upgrade tool HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16727-0	The "Lock all Toolbars" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Lock all Toolbars HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Toolbar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16969-8	The "Use large Icons for Command Buttons" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Use large Icons for Command Buttons HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16590-2	The "Disable customizing browser toolbars" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Disable customizing browser toolbars HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16868-2	The "Hide the Status Bar" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Hide the Status Bar HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15060-7	The "Network Protocol Lockdown: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15791-7	The "Network Protocol Lockdown: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Internet Explorer Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15817-0	The "Network Protocol Lockdown: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15296-7	The "Intranet Zone Restricted Protocols" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Restricted Protocols Per Security Zone\Intranet Zone Restricted Protocols HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\RestrictedProtocols	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15529-1	The "Trusted Sites Zone Restricted Protocols" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Restricted Protocols Per Security Zone\Trusted Sites Zone Restricted Protocols HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\RestrictedProtocols	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15040-9	The "Restricted Sites Zone Restricted Protocols" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Restricted Protocols Per Security Zone\Restricted Sites Zone Restricted Protocols HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\RestrictedProtocols	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15890-7	The "Local Machine Zone Restricted Protocols" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Restricted Protocols Per Security Zone\Local Machine Zone Restricted Protocols HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\RestrictedProtocols	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15895-6	The "Internet Zone Restricted Protocols" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Network Protocol Lockdown\Restricted Protocols Per Security Zone\Internet Zone Restricted Protocols HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\RestrictedProtocols	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16175-2	The "Local Machine Zone Lockdown Security: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Local Machine Zone Lockdown Security\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16669-4	The "Local Machine Zone Lockdown Security: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Local Machine Zone Lockdown Security\Internet Explorer Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16162-0	The "Local Machine Zone Lockdown Security: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Local Machine Zone Lockdown Security\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16061-4	The "MK Protocol Security Restriction: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\MK Protocol Security Restriction\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16982-1	The "MK Protocol Security Restriction: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\MK Protocol Security Restriction\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16938-3	The "MK Protocol Security Restriction: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\MK Protocol Security Restriction\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16128-1	The "Information Bar: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Information Bar\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15726-3	The "Information Bar: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Information Bar\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15264-5	The "Information Bar: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Information Bar\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17109-0	The "Maximum number of connections per server (HTTP 1.0)" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\AJAX\Maximum number of connections per server (HTTP 1.0) HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16161-2	The "Turn off Cross Document Messaging" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\AJAX\Turn off Cross Document Messaging HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_CROSS_DOCUMENT_MESSAGING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16743-7	The "Maximum number of connections per server (HTTP 1.1)" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\AJAX\Maximum number of connections per server (HTTP 1.1) HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17122-3	The "Turn off the XDomainRequest Object" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\AJAX\Turn off the XDomainRequest Object HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XDOMAINREQUEST	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17113-2	The "Enable Native XMLHttpRequest Support" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\AJAX\Enable Native XMLHttpRequest Support HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15717-2	The "Auto-hide the Toolbars" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Auto-hide the Toolbars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15950-9	The "Turn off Developer Tools" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Turn off Developer Tools HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\IEDevTools	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15972-3	The "Lock all Toolbars" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Lock all Toolbars HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Toolbar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15474-0	The "Use large Icons for Command Buttons" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Use large Icons for Command Buttons HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15945-9	The "Set location of Stop and Refresh buttons" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Set location of Stop and Refresh buttons HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15472-4	The "Turn off toolbar upgrade tool" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Turn off toolbar upgrade tool HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15874-1	The "Hide the Command Bar" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Hide the Command Bar HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15471-6	The "Customize Command Labels" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Customize Command Labels HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\CommandBar	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15860-0	The "Hide the Status Bar" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Toolbars\Hide the Status Bar HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16394-9	The "Turn off the XDomainRequest Object" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\AJAX\Turn off the XDomainRequest Object HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XDOMAINREQUEST	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16244-6	The "Maximum number of connections per server (HTTP 1.1)" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\AJAX\Maximum number of connections per server (HTTP 1.1) HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16275-0	The "Maximum number of connections per server (HTTP 1.0)" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\AJAX\Maximum number of connections per server (HTTP 1.0) HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16372-5	The "Turn off Cross Document Messaging" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\AJAX\Turn off Cross Document Messaging HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_CROSS_DOCUMENT_MESSAGING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15496-3	The "Enable Native XMLHttpRequest Support" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\AJAX\Enable Native XMLHttpRequest Support HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16472-3	The "Turn off Windows Search AutoComplete" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\AutoComplete\Turn off Windows Search AutoComplete HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\WindowsSearch	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16704-9	The "Turn on inline AutoComplete for Web addresses" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\AutoComplete\Turn on inline AutoComplete for Web addresses HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Explorer\AutoComplete	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15484-9	The "Consistent Mime Handling: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Consistent Mime Handling\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15836-0	The "Consistent Mime Handling: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Consistent Mime Handling\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16087-9	The "Consistent Mime Handling: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Consistent Mime Handling\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16405-3	The "Prevent Deleting Temporary Internet Files" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Temporary Internet Files HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Privacy	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16414-5	The "Prevent Deleting Favorites Site Data" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Favorites Site Data HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Privacy	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15670-3	The "Turn off "Delete Browsing History" functionality" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Turn off "Delete Browsing History" functionality HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16427-7	The "Prevent Deleting Form Data" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Form Data HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15683-6	The "Prevent Deleting Passwords" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Passwords HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16432-7	The "Disable "Configuring History"" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Disable "Configuring History" HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15533-3	The "Prevent Deleting Web sites that the User has Visited" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Web sites that the User has Visited HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Privacy	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15466-6	The "Prevent Deleting Cookies" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting Cookies HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Privacy	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15925-1	The "Prevent Deleting InPrivate Filtering data" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Delete Browsing History\Prevent Deleting InPrivate Filtering data HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Privacy	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16332-9	The "Restrict File Download: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict File Download\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16337-8	The "Restrict File Download: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict File Download\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16323-8	The "Restrict File Download: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Restrict File Download\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16293-3	The "Local Machine Zone Lockdown Security: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Local Machine Zone Lockdown Security\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16672-8	The "Local Machine Zone Lockdown Security: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Local Machine Zone Lockdown Security\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15799-0	The "Local Machine Zone Lockdown Security: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Local Machine Zone Lockdown Security\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16518-3	The "Protection From Zone Elevation: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Protection From Zone Elevation\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16641-3	The "Protection From Zone Elevation: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Protection From Zone Elevation\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16862-5	The "Disable the Programs page" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Programs page HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16858-3	The "Disable the Content page" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Content page HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16981-3	The "Use UTF-8 for mailto links" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Use UTF-8 for mailto links HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Protocols\Mailto	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16488-9	The "Disable the General page" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the General page HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16990-4	The "Send internationalized domain names" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Send internationalized domain names HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16598-5	The "Disable the Connections page" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Connections page HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16068-9	The "Disable the Privacy page" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Disable the Privacy page HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16112-5	The "Binary Behavior Security Restriction: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Binary Behavior Security Restriction\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16389-9	The "Admin-approved behaviors" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Binary Behavior Security Restriction\Admin-approved behaviors HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15631-5	The "Binary Behavior Security Restriction: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Binary Behavior Security Restriction\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16376-6	The "Binary Behavior Security Restriction: Internet Explorer Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Binary Behavior Security Restriction\Internet Explorer Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15410-4	The "Turn on Automatic Signup" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Advanced settings\Signup Settings\Turn on Automatic Signup HKEY_CURRENT_USER\Software\Policies\Microsoft\IEAK	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15951-7	The "Microsoft Chat" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\Microsoft Chat HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16101-8	The "Microsoft Agent" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\Microsoft Agent HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15867-5	The "Shockwave Flash" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\Shockwave Flash HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15937-6	The "Carpoint" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\Carpoint HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15616-6	The "Audio/Video Player" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\Audio/Video Player HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15224-9	The "MSNBC" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\MSNBC HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15140-7	The "Investor" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\Investor HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16000-2	The "Microsoft Survey Control" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\Microsoft Survey Control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16074-7	The "Microsoft Scriptlet Component" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\Microsoft Scriptlet Component HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16070-5	The "NetShow File Transfer Control" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\NetShow File Transfer Control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15378-3	The "DHTML Edit Control" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\DHTML Edit Control HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15978-0	The "Menu Controls" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Administrator Approved Controls\Menu Controls HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16037-4	The "Disable Open in New Window menu option" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\Disable Open in New Window menu option HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15786-7	The "Disable Context menu" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\Disable Context menu HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15933-5	The "File menu: Disable New menu option" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\File menu: Disable New menu option HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15131-6	The "Help menu: Remove 'Tour' menu option" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\Help menu: Remove 'Tour' menu option HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15929-3	The "Help menu: Remove 'Send Feedback' menu option" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\Help menu: Remove 'Send Feedback' menu option HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15905-3	The "File menu: Disable Save As Web Page Complete" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\File menu: Disable Save As Web Page Complete HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15955-8	The "File menu: Disable Open menu option" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\File menu: Disable Open menu option HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15808-9	The "View menu: Disable Source menu option" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\View menu: Disable Source menu option HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15125-8	The "Turn off Print Menu" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\Turn off Print Menu HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16042-4	The "File menu: Disable closing the browser and Explorer windows" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\File menu: Disable closing the browser and Explorer windows HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15302-3	The "File menu: Disable Save As... menu option" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\File menu: Disable Save As... menu option HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15918-6	The "View menu: Disable Full Screen menu option" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\View menu: Disable Full Screen menu option HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15927-7	The "Tools menu: Disable Internet Options... menu option" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\Tools menu: Disable Internet Options... menu option HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16052-3	The "Hide Favorites menu" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Browser menus\Hide Favorites menu HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15923-6	The "Scripted Window Security Restrictions: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Scripted Window Security Restrictions\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15928-5	The "Scripted Window Security Restrictions: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Scripted Window Security Restrictions\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-17005-0	The "MK Protocol Security Restriction: Process List" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\MK Protocol Security Restriction\Process List HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16763-5	The "MK Protocol Security Restriction: All Processes" machine setting should be configured correctly.	enabled/disabled	Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\MK Protocol Security Restriction\All Processes HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15341-1	The "Object Caching Protection: Internet Explorer Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Object Caching Protection\Internet Explorer Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16214-9	The "Object Caching Protection: All Processes" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Object Caching Protection\All Processes HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15844-4	The "Object Caching Protection: Process List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Object Caching Protection\Process List HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15637-2	The "Restricted Sites Zone Template" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone Template HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Restricted Sites Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15316-3	The "Turn on Warn about Certificate Address Mismatch" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Turn on Warn about Certificate Address Mismatch HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16301-4	The "Intranet Sites: Include all sites that bypass the proxy server" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Sites: Include all sites that bypass the proxy server HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16172-9	The "Locked-Down Internet Zone Template" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone Template HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Lockdown Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15887-3	The "Trusted Sites Zone Template" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone Template HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Trusted Sites Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16111-7	The "Intranet Zone Template" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Zone Template HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Intranet Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16297-4	The "Locked-Down Local Machine Zone Template" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Local Machine Zone Template HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Local Machine Zone Lockdown Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15865-9	The "Internet Zone Template" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Internet Zone Template HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16259-4	The "Site to Zone Assignment List" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Site to Zone Assignment List HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16273-5	The "Turn on Information bar notification for intranet content" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Turn on Information bar notification for intranet content HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16306-3	The "Locked-Down Intranet Zone Template" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Intranet Zone Template HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Intranet Lockdown Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16124-0	The "Local Machine Zone Template" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Local Machine Zone Template HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Local Machine Zone Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16284-2	The "Turn on automatic detection of the intranet" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Turn on automatic detection of the intranet HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16287-5	The "Locked-Down Restricted Sites Zone Template" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Restricted Sites Zone Template HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Restricted Sites Lockdown Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16310-5	The "Locked-Down Trusted Sites Zone Template" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone Template HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Trusted Sites Lockdown Settings\Template Policies	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16120-8	The "Intranet Sites: Include all local (intranet) sites not listed in other zones" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Sites: Include all local (intranet) sites not listed in other zones HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16049-9	The "Intranet Sites: Include all network paths (UNCs)" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Intranet Sites: Include all network paths (UNCs) HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16801-3	The "Play sounds in web pages" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Play sounds in web pages HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15924-4	The "Allow active content from CDs to run on user machines" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Allow active content from CDs to run on user machines HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16056-4	The "Check for signatures on downloaded programs" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Check for signatures on downloaded programs HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Download	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15932-7	The "Allow software to run or install even if the signature is invalid" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Allow software to run or install even if the signature is invalid HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Download	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15938-4	The "Turn off Encryption Support" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Turn off Encryption Support HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15940-0	The "Empty Temporary Internet Files folder when browser is closed" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Empty Temporary Internet Files folder when browser is closed HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Cache	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16908-6	The "Do not allow resetting Internet Explorer settings" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Do not allow resetting Internet Explorer settings HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16899-7	The "Automatically check for Internet Explorer updates" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Automatically check for Internet Explorer updates HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16592-8	The "Check for server certificate revocation" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Check for server certificate revocation HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16920-1	The "Play animations in web pages" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Play animations in web pages HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16725-4	The "Turn off ClearType" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Turn off ClearType HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16742-9	The "Turn on Caret Browsing support" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Turn on Caret Browsing support HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\CaretBrowsing	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16606-6	The "Use HTTP 1.1 through proxy connections" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Use HTTP 1.1 through proxy connections HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15973-1	The "Do not save encrypted pages to disk" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Do not save encrypted pages to disk HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16720-5	The "Allow third-party browser extensions" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Allow third-party browser extensions HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16916-9	The "Use HTTP 1.1" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Advanced Page\Use HTTP 1.1 HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16383-2	The "Turn on the hover color option" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Display settings\Link Colors\Turn on the hover color option HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16515-9	The "Prevent users from configuring the color of links that have already been clicked" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Display settings\Link Colors\Prevent users from configuring the color of links that have already been clicked HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-16770-0	The "Prevent users from configuring the hover color" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Display settings\Link Colors\Prevent users from configuring the hover color HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN
CCE-15911-1	The "Prevent users from configuring the color of links that have not yet been clicked" current user setting should be configured correctly.	enabled/disabled	User Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Settings\Display settings\Link Colors\Prevent users from configuring the color of links that have not yet been clicked HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Settings	NaN	NaN	NaN	Microsoft Tool: Security Compliance Manager (SCM) Microsoft Baseline: Internet Explorer 8 SCM URL: http://go.microsoft.com/fwlink/?LinkId=113940	NaN	NaN