Microsoft Office 365 ProPlus Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Open/Save of PowerPoint 97-2003 presentations, shows, templates, and add-in files must be blocked.
<VulnDiscussion>This policy setting allows you to determine whether users can open, view, edit, or save PowerPoint files with the format spec...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
The default file block behavior must be set to not open blocked files in PowerPoint.
<VulnDiscussion>This policy setting allows you to determine if users can open, view, or edit Word files. If you enable this policy setting, y...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Encrypted macros in PowerPoint Open XML presentations must be scanned.
<VulnDiscussion>This policy setting controls whether encrypted macros in Open XML presentations are required to be scanned with anti-virus so...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
File validation in PowerPoint must be enabled.
<VulnDiscussion>This policy setting allows you to turn off the file validation feature. If you enable this policy setting, file validation wi...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Macros from the Internet must be blocked from running in PowerPoint.
<VulnDiscussion>This policy setting allows you to block macros from running in Office files that come from the Internet. If you enable this p...Rule Medium Severity -
SRG-APP-000131
<GroupDescription></GroupDescription>Group -
Unsigned add-ins in PowerPoint must be blocked with no Trust Bar Notification to the user.
<VulnDiscussion>This policy setting controls whether the specified Office application notifies users when unsigned application add-ins are lo...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Files downloaded from the Internet must be opened in Protected view in PowerPoint.
<VulnDiscussion>This policy setting allows you to determine if files downloaded from the Internet zone open in Protected View. If you enable ...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
PowerPoint attachments opened from Outlook must be in Protected View.
<VulnDiscussion>This policy setting allows for determining whether PowerPoint files in Outlook attachments open in Protected View. If enablin...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Files in unsafe locations must be opened in Protected view in PowerPoint.
<VulnDiscussion>This policy setting determines whether files located in unsafe locations will open in Protected View. If unsafe locations hav...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
If file validation fails, files must be opened in Protected view in PowerPoint with ability to edit disabled.
<VulnDiscussion>This policy setting controls how Office handles documents when they fail file validation. If you enable this policy setting, ...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.