Microsoft Office 365 ProPlus Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Level 2 file attachments must be blocked from being delivered.
This policy setting controls which types of attachments (determined by file extension) must be saved to disk before users can open them. Files with specific extensions can be categorized as Level 1...Rule Medium Severity -
SRG-APP-000210
Group -
Outlook must be configured to not run scripts in forms in which the script and the layout are contained within the message.
This policy setting controls whether scripts can run in Outlook forms in which the script and layout are contained within the message. If you enable this policy setting, scripts can run in one-off ...Rule Medium Severity -
SRG-APP-000488
Group -
SRG-APP-000488
Group -
When an untrusted program attempts to programmatically access an Address Book using the Outlook object model, Outlook must automatically deny it.
This policy setting controls what happens when an untrusted program attempts to gain access to an Address Book using the Outlook object model. If you enable this policy setting, you can choose fr...Rule Medium Severity -
SRG-APP-000488
Group -
When a user designs a custom form in Outlook and attempts to bind an Address Information field to a combination or formula custom field, Outlook must automatically deny it.
This policy setting controls what happens when a user designs a custom form in Outlook and attempts to bind an Address Information field to a combination or formula custom field. If you enable this...Rule Medium Severity -
SRG-APP-000488
Group -
SRG-APP-000488
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.