DTOO412 - The ability to run unsecure Office web add-ins and Catalogs must be disabled.

Information

This policy setting allows users to run unsecure web add-in, which are add-ins that have web page or catalog locations that are not SSL-secured (https://), and are not in users' Internet zones. If you enable this policy setting, users can run unsecure apps. To enable specific unsecure web add-ins, you must also configure the Trusted Web add-in Catalog policy settings to trust the catalogs that contains those Add-ins. If you disable or do not configure this policy setting, unsecure web add-ins are not allowed.

Solution

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2016 -> Security Settings -> Trust Center -> Trusted Catalogs 'Allow Unsecure web add-ins and Catalogs' to 'Disabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Office_System_2016_V2R2_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-238041r650690_rule, STIG-ID|DTOO412, STIG-Legacy|SV-85519, STIG-Legacy|V-70895, Vuln-ID|V-238041

Plugin: Windows

Control ID: 35ac64f9406833e6480ab6be50f778d2bb13809155df5d54de2f214936c726cb