DISA STIG Microsoft OneDrive v2r3

This audit file has been deprecated and will be removed in a future update.

Name: DISA STIG Microsoft OneDrive v2r3

Updated: 1/13/2026

Authority: DISA STIG

Plugin: Windows

Revision: 1.3

Estimated Item Count: 13

Filename: DISA_STIG_Microsoft_OneDrive_v2r3.audit

Size: 23.8 kB

MD5: f26a9b264636d0664adacfddc2fc71f4

SHA256: 23f1c772bfd33309e3a0e24baf43ad98b37504d491868d3b2b6b2093bb9eaf98

Description	Categories
DISA_STIG_Microsoft_OneDrive_v2r3.audit from DISA Microsoft OneDrive v2r3 STIG
DTOO104 - Disabling of user name and password syntax from being used in URLs must be enforced.
DTOO111 - Enabling IE Bind to Object functionality must be present.
DTOO117 - Saved from URL mark to assure Internet zone processing must be enforced.
DTOO123 - Navigation to URLs embedded in Office products must be blocked.
DTOO124 - Scripted Window Security must be enforced.
DTOO126 - Add-on Management functionality must be allowed.
DTOO129 - Links that invoke instances of Internet Explorer from within an Office product must be blocked.
DTOO132 - File Downloads must be configured for proper restrictions.
DTOO209 - Protection from zone elevation must be enforced.
DTOO211 - ActiveX Installs must be configured for proper restriction.
DTOO605 - OneDrive must only allow synchronizing of accounts for DoD organization instances.
DTOO607 - The use of personal accounts for OneDrive synchronization must be disabled.