Skip to content
Log In

Microsoft Office System 2010 STIG

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Load controls in forms3 must be disabled from loading.

    ActiveX controls are Component Object Model (COM) objects and have unrestricted access to users' computers. ActiveX controls can access the local file system and change the registry settings of the...
    Rule Medium Severity
    Show

  • Changing permissions on rights managed content for users must be enforced.

    This setting controls whether Office 2010 users can change permissions for content that is protected with Information Rights Management (IRM). The Information Rights Management feature of Office ...
    Rule Medium Severity
    Show

  • Document metadata for password protected files must be protected.

    When an Office Open XML document is protected with a password and saved, any metadata associated with the document is encrypted along with the rest of the document's contents. If this configuration...
    Rule Medium Severity
    Show

  • Vector markup Language (VML) for displaying graphics in browsers must be disallowed.

    When saving documents as Web pages, Excel, PowerPoint, and Word can save vector–based graphics in Vector Markup Language (VML), which enables Internet Explorer to display them smoothly at any resol...
    Rule Medium Severity
    Show

  • Key Usage Filtering must be allowed.

    This policy setting allows you to filter a list of digital certificates for signing Excel, PowerPoint, and Word documents, based on the Key Usage field. The Key Usage field in a certificate is used...
    Rule Medium Severity
    Show

  • DTOO196 - Mix of Policy and User Locations

    Group
    Show

  • A mix of policy and user locations for Office Products must be disallowed.

    When Microsoft Office files are opened from trusted locations, all the content in the files is enabled and active. Users are not notified about any potential risks that might be contained in the fi...
    Rule Medium Severity
    Show

  • DTOO212 - Control Blogging

    Group
    Show

  • DTOO200 - Allow users to read with browsers

    Group
    Show

  • Office must be configured to not allow read with browsers.

    The Windows Rights Management Add-on for Internet Explorer provides a way for users who do not use the 2010 Office release to view, but not alter, files with restricted permissions. By default, IRM...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules