Microsoft Outlook 2016 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Users customizing attachment security settings must be prevented.
<VulnDiscussion>This policy setting prevents users from overriding the set of attachments blocked by Outlook. If you enable this policy setti...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
Outlook Security Mode must be configured to use Group Policy settings.
<VulnDiscussion>This policy setting controls which set of security settings are enforced in Outlook. If you enable this policy setting, you c...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
The ability to display level 1 attachments must be disallowed.
<VulnDiscussion>This policy setting controls whether Outlook blocks potentially dangerous attachments designated Level 1. Outlook uses two le...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Level 1 file extensions must be blocked and not removed.
<VulnDiscussion>This policy setting controls which types of attachments (determined by file extension) Outlook prevents from being delivered....Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Level 2 file extensions must be blocked and not removed.
<VulnDiscussion>This policy setting controls which types of attachments (determined by file extension) must be saved to disk before users can...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Scripts in One-Off Outlook forms must be disallowed.
<VulnDiscussion>This policy setting controls whether scripts can run in Outlook forms in which the script and layout are contained within the...Rule Medium Severity -
SRG-APP-000488
<GroupDescription></GroupDescription>Group -
Custom Outlook Object Model (OOM) action execution prompts must be configured.
<VulnDiscussion>This policy setting controls whether Outlook prompts users before executing a custom action. Custom actions add functionality...Rule Medium Severity -
SRG-APP-000488
<GroupDescription></GroupDescription>Group -
Object Model Prompt for programmatic email send behavior must be configured.
<VulnDiscussion>This policy setting controls what happens when an untrusted program attempts to send e-mail programmatically using the Outloo...Rule Medium Severity -
SRG-APP-000488
<GroupDescription></GroupDescription>Group -
Object Model Prompt behavior for programmatic address books must be configured.
<VulnDiscussion>This policy setting controls what happens when an untrusted program attempts to gain access to an Address Book using the Outl...Rule Medium Severity -
SRG-APP-000488
<GroupDescription></GroupDescription>Group -
SRG-APP-000516
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.