DISA STIG Microsoft Project 2013 v1r4

Audit Details

Name: DISA STIG Microsoft Project 2013 v1r4

Updated: 4/25/2022

Authority: DISA STIG

Plugin: Windows

Revision: 1.8

Estimated Item Count: 15

File Details

Filename: DISA_STIG_Microsoft_Project_2013_v1r4.audit

Size: 26.9 kB

MD5: 04217a8ba5fa5cc64b2d209f5a66bd23
SHA256: 437523e9659acadc7fb63a1c10d75938e2d2d2d331a06aec5e33c369c17215f1

Audit Items

DescriptionCategories
DISA_STIG_Microsoft_Project_2013_v1r4.audit for Microsoft Project 2013, from DISA STIG Microsoft Project 2013 v1r4
DTOO104 - Disabling of user name and password syntax from being used in URLs must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO111 - The Internet Explorer Bind to Object functionality must be enabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO117 - The Saved from URL mark must be selected to enforce Internet zone processing.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO123 - Navigation to URLs embedded in Office products must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO124 - Scripted Window Security must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO126 - Add-on Management functionality must be allowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO127 - Add-ins to Office applications must be signed by a Trusted Publisher.

CONFIGURATION MANAGEMENT

DTOO129 - Links that invoke instances of Internet Explorer from within an Office product must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO131 - Trust Bar Notifications for unsigned application add-ins must be blocked.

CONFIGURATION MANAGEMENT

DTOO132 - File Downloads must be configured for proper restrictions.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO209 - Protection from zone elevation must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO211 - ActiveX Installs must be configured for proper restriction.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO304 - Warning Bar settings for VBA macros must be configured.

CONFIGURATION MANAGEMENT

DTOO346 - Untrusted intranet zone access to Project servers must not be allowed.

SYSTEM AND COMMUNICATIONS PROTECTION