III - Administrative Public
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000207
Group -
The ability to display level 1 attachments must be disallowed.
This policy setting controls whether Outlook blocks potentially dangerous attachments designated Level 1. Outlook uses two levels of security to restrict users' access to files attached to e-mail m...Rule Medium Severity -
SRG-APP-000207
Group -
Level 1 file extensions must be blocked and not removed.
This policy setting controls which types of attachments (determined by file extension) Outlook prevents from being delivered. Outlook uses two levels of security to restrict users' access to files ...Rule Medium Severity -
SRG-APP-000207
Group -
Level 2 file extensions must be blocked and not removed.
This policy setting controls which types of attachments (determined by file extension) must be saved to disk before users can open them. Files with specific extensions can be categorized as Level ...Rule Medium Severity -
SRG-APP-000210
Group -
Scripts in One-Off Outlook forms must be disallowed.
This policy setting controls whether scripts can run in Outlook forms in which the script and layout are contained within the message. If you enable this policy setting, scripts can run in one-off ...Rule Medium Severity -
SRG-APP-000488
Group -
Custom Outlook Object Model (OOM) action execution prompts must be configured.
This policy setting controls whether Outlook prompts users before executing a custom action. Custom actions add functionality to Outlook that can be triggered as part of a rule. Among other possibl...Rule Medium Severity -
SRG-APP-000488
Group -
Object Model Prompt for programmatic email send behavior must be configured.
This policy setting controls what happens when an untrusted program attempts to send e-mail programmatically using the Outlook object model. If you enable this policy setting, you can choose from f...Rule Medium Severity -
SRG-APP-000488
Group -
Object Model Prompt behavior for programmatic address books must be configured.
This policy setting controls what happens when an untrusted program attempts to gain access to an Address Book using the Outlook object model. If you enable this policy setting, you can choose from...Rule Medium Severity -
SRG-APP-000488
Group -
Object Model Prompt behavior for programmatic access of user address data must be configured.
This policy setting controls what happens when an untrusted program attempts to gain access to a recipient field, such as the 'To:' field, using the Outlook object model. If you enable this policy ...Rule Medium Severity -
SRG-APP-000488
Group -
Object Model Prompt behavior for Meeting and Task Responses must be configured.
This policy setting controls what happens when an untrusted program attempts to programmatically send e-mail in Outlook using the Response method of a task or meeting request. If you enable this po...Rule Medium Severity -
SRG-APP-000488
Group -
Object Model Prompt behavior for the SaveAs method must be configured.
This policy setting controls what happens when an untrusted program attempts to use the Save As command to programmatically save an item. If you enable this policy setting, you can choose from four...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.