Microsoft Office 365 ProPlus Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
ActiveX installation restriction must be enabled in all Office programs.
<VulnDiscussion>Microsoft ActiveX controls allow unmanaged, unprotected code to run on the user computers. ActiveX controls do not run within...Rule Medium Severity -
SRG-APP-000112
<GroupDescription></GroupDescription>Group -
SRG-APP-000131
<GroupDescription></GroupDescription>Group -
User name and password must be disabled in all Office programs.
<VulnDiscussion>The Uniform Resource Locator (URL) standard allows user authentication to be included in URL strings in the form http://usern...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Trust Bar Notifications for unsigned application add-ins in Access must be disabled and blocked.
<VulnDiscussion>This policy setting controls whether the specified Office application notifies users when unsigned application add-ins are lo...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
VBA Macros not digitally signed must be blocked in Access.
<VulnDiscussion>This policy setting controls how the specified applications warn users when Visual Basic for Applications (VBA) macros are pr...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Allowing Trusted Locations on the network must be disabled in Access.
<VulnDiscussion>This policy setting controls whether trusted locations on the network can be used. If you enable this policy setting, users...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules