Microsoft Office 365 ProPlus Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Word attachments opened from Outlook must be in Protected View.
<VulnDiscussion>This policy setting allows you to determine if Word files in Outlook attachments open in Protected View. If you enable this ...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
The default file block behavior must be set to not open blocked files in Word.
<VulnDiscussion>This policy setting allows you to determine if users can open, view, or edit Word files. If you enable this policy setting, ...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Open/Save of Word 2 and earlier binary documents and templates must be blocked.
<VulnDiscussion>This policy setting allows you to determine whether users can open, view, edit, or save Word files with the format specified ...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Open/Save of Word 2000 binary documents and templates must be blocked.
<VulnDiscussion>This policy setting allows you to determine whether users can open, view, edit, or save Word files with the format specified ...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Open/Save of Word 2003 binary documents and templates must be blocked.
<VulnDiscussion>This policy setting allows you to determine whether users can open, view, edit, or save Word files with the format specified ...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Open/Save of Word 2007 and later binary documents and templates must be blocked.
<VulnDiscussion>This policy setting allows you to determine whether users can open, view, edit, or save Word files with the format specified ...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Open/Save of Word 6.0 binary documents and templates must be blocked.
<VulnDiscussion>This policy setting allows you to determine whether users can open, view, edit, or save Word files with the format specified ...Rule Medium Severity -
Open/Save of Word 95 binary documents and templates must be blocked.
<VulnDiscussion>This policy setting allows you to determine whether users can open, view, edit, or save Word files with the format specified ...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Open/Save of Word 97 binary documents and templates must be blocked.
<VulnDiscussion>This policy setting allows you to determine whether users can open, view, edit, or save Word files with the format specified ...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Open/Save of Word XP binary documents and templates must be blocked.
<VulnDiscussion>This policy setting allows you to determine whether users can open, view, edit, or save Word files with the format specified ...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
In Word, macros must be blocked from running, even if Enable all macros is selected in the Macro Settings section of the Trust Center.
<VulnDiscussion>This policy setting allows you to block macros from running in Office files that come from the Internet. If you enable this p...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Trusted Locations on the network must be disabled in Word.
<VulnDiscussion>This policy setting controls whether trusted locations on the network can be used. If you enable this policy setting, users ...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
VBA Macros not digitally signed must be blocked in Word.
<VulnDiscussion>This policy setting controls how the specified applications warn users when Visual Basic for Applications (VBA) macros are pr...Rule Medium Severity -
SRG-APP-000112
<GroupDescription></GroupDescription>Group -
File validation in Word must be enabled.
<VulnDiscussion>This policy setting allows the file validation feature to be turned off. If this policy setting is enabled, file validation ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.