Microsoft Office 365 ProPlus Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000516
Group -
Office applications must not load XML expansion packs with Smart Documents.
This policy setting controls whether Office 365 ProPlus applications can load an XML expansion pack manifest file with a Smart Document.Rule Medium Severity -
SRG-APP-000207
Group -
SRG-APP-000207
Group -
Add-on Management must be enabled for all Office 365 ProPlus programs.
Internet Explorer add-ons are pieces of code, run in Internet Explorer, to provide additional functionality. Rogue add-ons may contain viruses or other malicious code. Disabling or not configuring ...Rule Medium Severity -
SRG-APP-000179
Group -
SRG-APP-000210
Group -
SRG-APP-000207
Group -
SRG-APP-000516
Group -
The Local Machine Zone Lockdown Security must be enabled in all Office programs.
Internet Explorer places restrictions on each web page users can use the browser to open. Web pages on a user's local computer have the fewest security restrictions and reside in the Local Machine ...Rule Medium Severity -
SRG-APP-000179
Group -
SRG-APP-000210
Group -
Navigate URL must be enabled in all Office programs.
To protect users from attacks, Internet Explorer usually does not attempt to load malformed URLs. This functionality can be controlled separately for instances of Internet Explorer spawned by Offic...Rule Medium Severity -
SRG-APP-000179
Group -
Object Caching Protection must be enabled in all Office programs.
Encryption is only as good as the encryption modules utilized. Unapproved cryptographic module algorithms cannot be verified and cannot be relied upon to provide confidentiality or integrity, and D...Rule Medium Severity -
SRG-APP-000112
Group -
Protection from zone elevation must be enabled in all Office programs.
Internet Explorer places restrictions on each web page users can use the browser to open. Web pages on a user's local computer have the fewest security restrictions and reside in the Local Machine ...Rule Medium Severity -
SRG-APP-000488
Group -
SRG-APP-000112
Group -
File Download Restriction must be enabled in all Office programs.
Disabling this setting allows websites to present file download prompts via code without the user specifically initiating the download. User preferences may also allow the download to occur without...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.