Skip to content
ATO Pathways
  Log In

Microsoft Office System 2016 Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-APP-000429

    <GroupDescription></GroupDescription>
    Group
    Show

  • Encrypt document properties must be configured for OLE documents.

    &lt;VulnDiscussion&gt;This policy setting allows you configure if the document properties are encrypted. This applies to OLE documents (Office 97-...
    Rule Medium Severity
    Show

  • SRG-APP-000141

    <GroupDescription></GroupDescription>
    Group
    Show

  • SRG-APP-000516

    <GroupDescription></GroupDescription>
    Group
    Show

  • The Help Improve Proofing Tools feature for Office must be configured.

    &lt;VulnDiscussion&gt;This policy setting controls whether the Help Improve Proofing Tools feature sends usage data to Microsoft. The Help Improve ...
    Rule Medium Severity
    Show

  • SRG-APP-000207

    <GroupDescription></GroupDescription>
    Group
    Show

  • Trust Bar notifications for Security messages must be enforced.

    &lt;VulnDiscussion&gt;This policy setting controls whether Office 2016 applications notify users when potentially unsafe features or content are de...
    Rule Medium Severity
    Show

  • SRG-APP-000429

    <GroupDescription></GroupDescription>
    Group
    Show

  • Rights managed Office Open XML files must be protected.

    &lt;VulnDiscussion&gt;This policy setting determines whether metadata is encrypted in Office Open XML files that are protected by Information Right...
    Rule Medium Severity
    Show

  • SRG-APP-000231

    <GroupDescription></GroupDescription>
    Group
    Show

  • Document metadata for password protected files must be protected.

    &lt;VulnDiscussion&gt;This policy setting determines whether metadata is encrypted when an Office Open XML file is password protected. If you enabl...
    Rule Medium Severity
    Show

  • SRG-APP-000231

    <GroupDescription></GroupDescription>
    Group
    Show

  • The encryption type for password protected Open XML files must be set.

    &lt;VulnDiscussion&gt;This policy setting allows you to specify an encryption type for Office Open XML files. If you enable this policy setting, yo...
    Rule Medium Severity
    Show

  • SRG-APP-000231

    <GroupDescription></GroupDescription>
    Group
    Show

  • The encryption type for password protected Office 97 thru Office 2003 must be set.

    &lt;VulnDiscussion&gt;This policy setting enables you to specify an encryption type for password-protected Office 97-2003 files. If you enable this...
    Rule Medium Severity
    Show

  • SRG-APP-000488

    <GroupDescription></GroupDescription>
    Group
    Show

  • ActiveX control initialization must be disabled.

    &lt;VulnDiscussion&gt;This policy setting specifies the Microsoft ActiveX« initialization security level for all Microsoft Office applications. Act...
    Rule Medium Severity
    Show

  • SRG-APP-000207

    <GroupDescription></GroupDescription>
    Group
    Show

  • Load controls in forms3 must be disabled from loading.

    &lt;VulnDiscussion&gt;This policy setting allows you to control how ActiveX controls in UserForms should be initialized based upon whether they are...
    Rule Medium Severity
    Show

  • SRG-APP-000210

    <GroupDescription></GroupDescription>
    Group
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules