Microsoft Office 365 ProPlus Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Macros must be blocked from running in Excel files from the Internet.
<VulnDiscussion>This policy setting allows you to block macros from running in Office files that come from the Internet. If you enable this ...Rule Medium Severity -
SRG-APP-000131
<GroupDescription></GroupDescription>Group -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Untrusted Microsoft Query files must be blocked from opening in Excel.
<VulnDiscussion>This policy setting controls whether Microsoft Query files (.iqy, oqy, .dqy, and .rqy) in an untrusted location are prevented...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Untrusted database files must be opened in Excel in Protected View mode.
<VulnDiscussion>This policy setting controls whether database files (.dbf) opened from an untrusted location are always opened in Protected V...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
Files from Internet zone must be opened in Excel in Protected View mode.
<VulnDiscussion>This policy setting allows you to determine if files downloaded from the Internet zone open in Protected View. If you enable...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Files from unsafe locations must be opened in Excel in Protected View mode.
<VulnDiscussion>This policy setting lets you determine if files located in unsafe locations will open in Protected View. If you have not spec...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Files failing file validation must be opened in Excel in Protected view mode and disallow edits.
<VulnDiscussion>This policy setting controls how Office handles documents when they fail file validation. If you enable this policy setting...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Outlook must be configured to not run scripts in forms in which the script and the layout are contained within the message.
<VulnDiscussion>This policy setting controls whether scripts can run in Outlook forms in which the script and layout are contained within the...Rule Medium Severity -
SRG-APP-000488
<GroupDescription></GroupDescription>Group -
The Exchange client authentication with Exchange servers must be enabled to use Kerberos Password Authentication.
<VulnDiscussion>This policy setting controls which authentication method Outlook uses to authenticate with Microsoft Exchange Server. Note: E...Rule Medium Severity -
SRG-APP-000575
<GroupDescription></GroupDescription>Group -
Outlook must use remote procedure call (RPC) encryption to communicate with Microsoft Exchange servers.
<VulnDiscussion>This policy setting controls whether Outlook uses remote procedure call (RPC) encryption to communicate with Microsoft Exchan...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.