II - Mission Support Classified
Rules and Groups employed by this XCCDF Profile
-
DTOO178 - Uploads to Office Online
Group -
Upload of document templates to Office Online must be prevented.
Office users can share Excel, PowerPoint, and Word templates they create with other Microsoft Office users around the world by uploading them to the community area of the Microsoft Office Online We...Rule Medium Severity -
DTOO188 - Protect document metadata
Group -
Document metadata for password protected files must be protected.
When an Office Open XML document is protected with a password and saved, any metadata associated with the document is encrypted along with the rest of the document's contents. If this configuration...Rule Medium Severity -
DTOO187 - Protect metadata / rights managed docs
Group -
Rights managed Office Open XML files must be protected.
When Information Rights Management (IRM) is used to restrict access to an Office Open XML document, any metadata associated with the document is not encrypted. This configuration could allow potent...Rule Medium Severity -
DTOO180 - Vector Markup Lang (VML) / IE graphics
Group -
Vector markup Language (VML) for displaying graphics in browsers must be disallowed.
When saving documents as Web pages, Excel, PowerPoint, and Word can save vector–based graphics in Vector Markup Language (VML), which enables Internet Explorer to display them smoothly at any resol...Rule Medium Severity -
DTOO204 - External Signature Services menu
Group -
External Signature Services Menu for Office must be suppressed.
Users can select Add Signature Services (from the Signature Line drop-down menu on the Insert tab of the Ribbon in Excel 2010, PowerPoint 2010, and Word 2010) to see a list of signature service pro...Rule Medium Severity -
DTOO306 - Disable hyperlinks to web templates
Group -
Hyperlinks to web templates in File | New and task panes must be disabled.
This setting controls whether users can follow hyperlinks to templates on Office.com from within Office 2010 applications.Rule Medium Severity -
DTOO307 - Office Live Workspace Integration
Group -
Office Live Workspace Integration must be off.
This setting controls the exposing of entry points for Office Live Workspace Integration features.Rule Medium Severity -
DTOO311 - Key Usage Filtering
Group -
Key Usage Filtering must be allowed.
This policy setting allows you to filter a list of digital certificates for signing Excel, PowerPoint, and Word documents, based on the Key Usage field. The Key Usage field in a certificate is used...Rule Medium Severity -
DTOO345 - Online content options
Group -
Online content options must be configured for offline content availability.
The Office 2010 Help system automatically searches Microsoft Office.com for content when a computer is connected to the Internet. Users can change this default by clearing the Search Microsoft Off...Rule Medium Severity -
DTOO312 - Customer-submitted templates downloads
Group -
Customer-submitted templates downloads from Office.com must be disallowed.
This policy setting controls whether Office 2010 users can download templates from the community area of Office.com by clicking New on the Microsoft Office menu. If you enable this policy setting, ...Rule Medium Severity -
DTOO321 - Encrypt document properties
Group -
Encrypt document properties must be configured for OLE documents.
This policy setting allows you configure if the document properties are encrypted. This applies to OLE documents (Office 97-2003 compatible) if the application is configured for CAPI RC4. Disabli...Rule Medium Severity -
DTOO191-ActiveX Control Initialization for Office
Group -
ActiveX control initialization must be disabled.
ActiveX controls can adversely affect a computer directly. In addition, malicious code can be used to compromise an ActiveX control and attack a computer. To indicate the safety of an ActiveX contr...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.