Microsoft Office 365 ProPlus Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Scripts associated with public folders must be prevented from execution in Outlook.
<VulnDiscussion>This policy setting controls whether Outlook executes scripts that are associated with custom forms or folder home pages for ...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Scripts associated with shared folders must be prevented from execution in Outlook.
<VulnDiscussion>This policy setting controls whether Outlook executes scripts associated with custom forms or folder home pages for shared fo...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
Files dragged from an Outlook e-mail to the file system must be created in ANSI format.
<VulnDiscussion>This policy setting controls whether e-mail messages dragged from Outlook to the file system are saved in Unicode or ANSI for...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
The junk email protection level must be set to No Automatic Filtering.
<VulnDiscussion>This policy setting controls the Junk E-mail protection level. The Junk E-mail Filter in Outlook helps to prevent junk email ...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Active X One-Off forms must only be enabled to load with Outlook Controls.
<VulnDiscussion>By default, third-party ActiveX controls are not allowed to run in one-off forms in Outlook. You can change this behavior so ...Rule Medium Severity -
SRG-APP-000340
<GroupDescription></GroupDescription>Group -
Outlook must be configured to prevent users overriding attachment security settings.
<VulnDiscussion>This policy setting prevents users from overriding the set of attachments blocked by Outlook. If you enable this policy sett...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
Internet must not be included in Safe Zone for picture download in Outlook.
<VulnDiscussion>This policy setting controls whether pictures and external content in HTML e-mail messages from untrusted senders on the Inte...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
The Publish to Global Address List (GAL) button must be disabled in Outlook.
<VulnDiscussion>This policy setting controls whether Outlook users can publish e-mail certificates to the Global Address List (GAL). If you...Rule Medium Severity -
SRG-APP-000630
<GroupDescription></GroupDescription>Group -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
The minimum encryption key length in Outlook must be at least 168.
<VulnDiscussion>This policy setting allows you to set the minimum key length for an encrypted e-mail message. If you enable this policy sett...Rule Medium Severity -
SRG-APP-000207
<GroupDescription></GroupDescription>Group -
The warning about invalid digital signatures must be enabled to warn Outlook users.
<VulnDiscussion>This policy setting controls how Outlook warns users about messages with invalid digital signatures. If you enable this poli...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.