Detections
Analytics
5.1.5 Set 'Disable all Trust Bar notifications for security issues' to 'Disabled'
Information
This policy setting controls whether Office 2010 applications notify users when potentiallyunsafe features or content are detected, or whether such features or content are silently
disabled without notification. The Message Bar in Office 2010 applications is used to
identify security issues, such as unsigned macros or potentially unsafe add-ins. When such
issues are detected, the application disables the unsafe feature or content and displays the
Message Bar at the top of the active window. The Message Bar informs the users about the
nature of the security issue and, in some cases, provides the users with an option to enable
the potentially unsafe feature or content, which could harm the user's computer. If you
enable this policy setting, Office 2010 applications do not display information in the
Message Bar about potentially unsafe content that has been detected or has automatically
been blocked. If you disable this policy setting, Office 2010 applications display information
in the Message Bar about content that has automatically been blocked. If you do not
configure this policy setting, if an Office 2010 application detects a security issue, the
Message Bar is displayed. However, this configuration can be modified by users in the Trust
Center. The recommended state for this setting is- Disabled.
*Rationale*
The Message Bar in Office 2010 applications is used to identify security issues, such as
unsigned macros or potentially unsafe add-ins. When such issues are detected, the
application disables the unsafe feature or content and displays the Message Bar at the top
of the active window. The Message Bar informs the users about the nature of the security
issue and, in some cases, provides the users with an option to enable the potentially unsafe
feature or content, which could harm the user's computer. By default, if a Office 2010
application detects a security issue, the Message Bar is displayed. However, this
configuration can be modified by users in the Trust Center.
Solution
To implement the recommended configuration state, set the following Group Policy settingto Disabled.
User Configuration\Administrative Templates\Microsoft Office 2010\Security
Settings\Disable all Trust Bar notifications for security issues
Impact-This setting does not modify the default configuration, and therefore is unlikely to cause
any usability issues.
See Also
Item Details
Audit Name: CIS MS Office Outlook 2010 v1.0.0
Category: SYSTEM AND INFORMATION INTEGRITY
References: 800-53|SI-3c.2.
Plugin: Windows
Control ID: 9b37468013033c2faedca9f098385c84a4f7123e8cdd5906cd50a1f1e888dd69