Forum Widgets
Latest Discussions
BrowserCodeIntegritySetting vs. Memory integrity / HVCI
Hello all, we have set BrowserCodeIntegritySetting to '2' (Enabled: Enable code integrity guard enforcement in the browser process.) This causes the browser to crash once a user tries to logon to Citrix terminal servers with EntraID/Fido2. This is probably cased by an unsigned Citrix CtxFidoMuxdll, but from our understanding this should be properly handled and the browser should not just crash. While investigating the root cause, we found very few information about Code Integrity Guard. It seems it was shipped as part of Device Guard but nowadays is named Memory integrity or hypervisor-protected code integrity (HVCI) and independent from Device Guard. Is this understanding correct and can we expect that the feature name will be updated and a proper documentation will be added? BR, JoeEdge Beta 147.0.3912.26: This policy is blocked, its value will be ignored.
Starting with Edge Beta 147.0.3912.26 as well as Edge Dev 148.0.3928.0 I'm facing the problem, that the so called "sensitive policies" (which need an MDM or AD-Joined Device) are blocked. Error-Message in edge://policy/ shows up with: This policy is blocked, its value will be ignored. Using Edge Stable 146.0.3856.84 works fine (on the same machine). Issue is only related to the so called "sensitive policies" and ist clearly new with Edge Beta 147.0.3912.26 as well as Edge Dev 148.0.3928.0 ... I didn't change anything except updating Edge Beta and Edge Dev ... and as I said: Edge Stable still works fine on the same machine. The Release Notes https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnote-beta-channel don't show any new changes regarding those "sensitive Policies". So what happened? Did Microsoft break the Policies with those new Versions?What is EdgeSafeHostingExtensionEnabled about?
Hello, with v145 the EdgeSafeHostingExtensionEnabled policy was introduced. The description says, "Microsoft Edge Safe Hosting component extension is installed automatically when users visit supported Microsoft services, such as Microsoft 365 Copilot app." Is this a regular browser extension? If so, what is the related Extension ID? How does this combine with other extension management policies? Or is it a browser component, which should show up under edge://components? What would be its name? What is the exact purpose of "Microsoft Edge Safe Hosting component" extension? Thanks for any hints. BR Joe
Question: Windows Enterprise / EDU Version - End of Life (EOL) Notification
Hello Microsoft Community - Enterprise, i have a general question about the Windows Enterprise / EDU Version and the End of Life (EOL) notification . I have a general question about End of Life (EOL) and the notification process. Could someone please explain and tell me exactly how is the notification process for Windows EOL in the Enterprise/EDU version? My understanding is this: For the Windows Home version, the notification is given 30 days in advance, see below. But what about the Enterprise/EDU version? Is it 36 months in advance? For products and services governed by the https://learn.microsoft.com/en-us/lifecycle/policies/modern, unless otherwise noted, Microsoft's policy is to provide a minimum 30 days' notification when customers are required to take action in order to avoid significant degradation to the normal use of the product or service. I would appreciate your help.
Edge browser crashes after file download / open
Hello, I am using Edge browser Version 142.0.3595.80 (Official build) (64-bit), on Linux. When downloading a file , and trying to open the downloaded file from wihin browser, it causes edge browser instances to close. I have been using other browsers to get around the problem. Is this a known problem, and are there a solution to this problem? Thanks, JayMy Work feed is missing on the Edge landig page with Beta 144.0.3719.18
Since introduction of Beta 144.0.3719.18 the Work / Discover is changed to Discover only on the landingpage. See below: This means that the handy Microsoft 365 information are missing (Latest documents, Sharepoint sites and comming up events). Stable version 143.0.3650.96 does not have this issue, next to MSN there is a toggle (Work Discover) to choose from. More people seen this behaviour? Regards, HennoExtended channel not working for Edge 142
We have been running the extended channel for a long time, and as far as I can tell, everything on our end looks to be configured correctly. But when checking for updates, Edge is saying that we're up-to-date with 140.0.3485.130. Clearly we should be getting updated to 142.0.3595.53. Is anyone else using extended channel experiencing the same issue?Is Edge Copilot susceptible to Prompt Injection Attack?
I am getting lots of negative vibe when reading about OpenAI's Altas browser. But what about Edge browser? Let's say if you have Copilot in Edge turned on with Page Content allowed. You asked the Copilot to summerise the page you are browsing and the page has hidden text to initiate a prompt injection attack. Is it safe to say that as long as Copilot does not have control over your browsing or desktop, the damage is limited. The worst thing it could happen is the change of AI behaviour, meaning the response returned from your question may not be what you asked for. There is zero DLP risk, right?Stolen session token from Edge
We can steal the session token from Edge using tools like Burp Suite or Fiddler to intercept proxy traffic on the mobile phone, even when the Edge is MAM protected by Intune. This makes the Edge browser unsafe to use for Enterprise Applications on personal mobile. Recently I discovered that the https://learn.microsoft.com/en-us/entra/identity/conditional-access/concept-token-protection in Conditional Access Policy. However it is only available for Windows. I am wondering if anyone knows when it would become available for mobile on Entra roadmap. Also, if you know any Edge configuration, I could use to stop Token Theft, please let me know! Thank you everyone.
