Skip to content
Log In

Microsoft Office 365 ProPlus Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-APP-000179

    Group
    Show

  • Macros must be blocked from running in Access files from the Internet.

    This policy setting allows you to block macros from running in Office files that come from the Internet. If you enable this policy setting, macros are blocked from running, even if “Enable all mac...
    Rule Medium Severity
    Show

  • SRG-APP-000131

    Group
    Show

  • SRG-APP-000141

    Group
    Show

  • VBA Macros not digitally signed must be blocked in Access.

    This policy setting controls how the specified applications warn users when Visual Basic for Applications (VBA) macros are present. If this policy setting is enabled, choose from four options for ...
    Rule Medium Severity
    Show

  • SRG-APP-000210

    Group
    Show

  • The Macro Runtime Scan Scope must be enabled for all documents.

    This policy setting specifies for which documents the VBA Runtime Scan feature is enabled. If the feature is disabled for all documents, no runtime scanning of enabled macros will be performed. I...
    Rule Medium Severity
    Show

  • SRG-APP-000429

    Group
    Show

  • SRG-APP-000141

    Group
    Show

  • SRG-APP-000516

    Group
    Show

  • Custom user interface (UI) code must be blocked from loading in all Office applications.

    This policy setting controls whether Office 365 ProPlus applications load any custom user interface (UI) code included with a document or template. Office 365 ProPlus allows developers to extend th...
    Rule Medium Severity
    Show

  • SRG-APP-000488

    Group
    Show

  • ActiveX Controls must be initialized in Safe Mode.

    This policy setting specifies the Microsoft ActiveX initialization security level for all Microsoft Office applications. ActiveX controls can adversely affect a computer directly. In addition, mali...
    Rule Medium Severity
    Show

  • SRG-APP-000210

    Group
    Show

  • SRG-APP-000131

    Group
    Show

  • Trust Bar notifications must be configured to display information in the Message Bar about the content that has been automatically blocked.

    This policy setting controls whether Office 365 ProPlus applications notify users when potentially unsafe features or content are detected, or whether such features or content are silently disabled...
    Rule Medium Severity
    Show

  • SRG-APP-000231

    Group
    Show

  • SRG-APP-000231

    Group
    Show

  • SRG-APP-000340

    Group
    Show

  • Users must be prevented from creating new trusted locations in the Trust Center.

    This policy setting controls whether trusted locations can be defined by users, the Office Customization Tool (OCT), and Group Policy, or if they must be defined by Group Policy alone. If you enab...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules