Specify if online OCSP/CRL checks are required for local trust anchors

Control whether online revocation checks (OCSP/CRL checks) are required. If Microsoft Edge can't get revocation status information, these certificates are treated as revoked ("hard-fail").

If you enable this policy, Microsoft Edge always performs revocation checking for server certificates that successfully validate and are signed by locally-installed CA certificates.

If you don't configure or disable this policy, then Microsoft Edge uses the existing online revocation checking settings.

Supported on: Microsoft Edge version 77, Windows 7 or later

Registry Hive	HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER
Registry Path	Software\Policies\Microsoft\Edge
Value Name	RequireOnlineRevocationChecksForLocalAnchors
Value Type	REG_DWORD
Enabled Value	1
Disabled Value	0

msedge.admx

Administrative Templates (Computers)

Microsoft Edge - Default Settings (users can override)
Microsoft Edge
Microsoft Edge Update
- Applications
  - Microsoft Edge Beta
  - Microsoft Edge Canary
  - Microsoft Edge Dev
  - Microsoft Edge
  - Allow installation default
  - Allow Microsoft Edge Side by Side browser experience
  - Prevent Desktop Shortcut creation upon install default
  - Update policy override default
- Microsoft Edge WebView
  - Allow installation
  - Update policy override
- Preferences
  - Auto-update check period override
  - Time period in each day to suppress auto-update check
- Proxy Server
Microsoft Edge WebView2
- Loader Override Settings
  - Configure the location of the browser executable folder
  - Set the release channel search order preference

Administrative Templates (Users)

Microsoft Edge - Default Settings (users can override)
Microsoft Edge
Microsoft Edge WebView2
- Loader Override Settings
  - Configure the location of the browser executable folder
  - Set the release channel search order preference