O365-CO-000002 - Document metadata for rights managed Office Open XML files must be protected.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


This policy setting determines whether metadata is encrypted in Office Open XML files that are protected by Information Rights Management (IRM). If you enable this policy setting, Excel, PowerPoint, and Word encrypt metadata stored in rights-managed Office Open XML files and override any configuration changes on users' computers.

If you disable this policy setting, Office 2016 applications cannot encrypt metadata in rights-managed Office Open XML files, which can reduce security. If you do not configure this policy setting, when Information Rights Management (IRM) is used to restrict access to an Office Open XML document, any metadata associated with the document is not encrypted.


Set the policy value for User Configuration >> Administrative Templates >> Microsoft Office 2016 >> Security Settings 'Protect document metadata for rights managed Office Open XML Files' to 'Enabled'.

See Also


Item Details

References: CAT|II, CCI|CCI-002476, Rule-ID|SV-223285r508019_rule, STIG-ID|O365-CO-000002, STIG-Legacy|SV-108747, STIG-Legacy|V-99643, Vuln-ID|V-223285

Plugin: Windows

Control ID: f65c3b3f5cd238f35a5f65f3a5b5131c8e8cc65363f2eac787122f5234eabea1