Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Allow Basic authentication for HTTP
Supported versions
- On Windows and macOS since 88 or later
Description
If you enable this policy or leave it unset, Basic authentication challenges received over non-secure HTTP will be allowed.
If you disable this policy, non-secure HTTP requests from the Basic authentication scheme are blocked, and only secure HTTPS is allowed.
This policy setting is ignored (and Basic is always forbidden) if the AuthSchemes policy is set and does not include Basic.
Supported features
- Can be mandatory: Yes
- Can be recommended: No
- Dynamic Policy Refresh: Yes
- Per Profile: No
- Applies to a profile that is signed in with a Microsoft account: Yes
Data type
- Boolean
Windows information and settings
Group Policy (ADMX) info
- GP unique name: BasicAuthOverHttpEnabled
- GP name: Allow Basic authentication for HTTP
- GP path (Mandatory): Administrative Templates/Microsoft Edge/HTTP authentication
- GP path (Recommended): N/A
- GP ADMX file name: MSEdge.admx
Example value
Disabled
Registry settings
- Path (Mandatory): SOFTWARE\Policies\Microsoft\Edge
- Path (Recommended): N/A
- Value name: BasicAuthOverHttpEnabled
- Value type: REG_DWORD
Example registry value
0x00000000
Mac information and settings
- Preference Key name: BasicAuthOverHttpEnabled
- Example value:
<false/>