STIGQter STIGQter: STIG Summary:

Microsoft Excel 2016 Security Technical Implementation Guide

Version: 1

Release: 2 Benchmark Date: 27 Oct 2017

SV-85579r1_ruleDisabling of user name and password syntax from being used in URLs must be enforced.
SV-85581r1_ruleOpen/Save actions for Excel 4 macrosheets and add-in files must be blocked.
SV-85583r1_ruleOpen/Save actions for Excel 4 workbooks must be blocked.
SV-85585r1_ruleOpen/Save actions for Excel 4 worksheets must be blocked.
SV-85587r1_ruleActions for Excel 95 workbooks must be configured to edit in Protected View.
SV-85589r1_ruleActions for Excel 95-97 workbooks and templates must be configured to edit in Protected View.
SV-85591r1_ruleBlocking as default file block opening behavior must be enforced.
SV-85593r1_ruleEnabling IE Bind to Object functionality must be present.
SV-85595r1_ruleOpen/Save actions for Dif and Sylk files must be blocked.
SV-85597r1_ruleOpen/Save actions for Excel 2 macrosheets and add-in files must be blocked.
SV-85599r1_ruleOpen/Save actions for Excel 2 worksheets must be blocked.
SV-85601r1_ruleOpen/Save actions for Excel 3 macrosheets and add-in files must be blocked.
SV-85603r1_ruleOpen/Save actions for Excel 3 worksheets must be blocked.
SV-85605r1_ruleSaved from URL mark to assure Internet zone processing must be enforced.
SV-85607r2_ruleConfiguration for file validation must be enforced.
SV-85609r1_ruleOpen/Save actions for web pages and Excel 2003 XML spreadsheets must be blocked.
SV-85611r1_ruleFiles from the Internet zone must be opened in Protected View.
SV-85613r1_ruleOpen/Save actions for dBase III / IV files must be blocked.
SV-85615r1_ruleNavigation to URLs embedded in Office products must be blocked.
SV-85617r1_ruleScripted Window Security must be enforced.
SV-85619r1_ruleAdd-on Management functionality must be allowed.
SV-85621r1_ruleAdd-ins to Office applications must be signed by a Trusted Publisher.
SV-85623r1_ruleLinks that invoke instances of Internet Explorer from within an Office product must be blocked.
SV-85625r1_ruleTrust Bar Notifications for unsigned application add-ins must be blocked.
SV-85627r1_ruleFile Downloads must be configured for proper restrictions.
SV-85629r1_ruleAll automatic loading from trusted locations must be disabled.
SV-85631r1_ruleDisallowance of trusted locations on the network must be enforced.
SV-85635r1_ruleThe Save commands default file format must be configured.
SV-85639r1_ruleThe scanning of encrypted macros in open XML documents must be enforced.
SV-85641r1_ruleMacro storage must be in personal macro workbooks.
SV-85643r1_ruleTrust access for VBA must be disallowed.
SV-85647r1_ruleProtection from zone elevation must be enforced.
SV-85649r1_ruleActiveX Installs must be configured for proper restriction.
SV-85651r1_ruleFiles in unsafe locations must be opened in Protected View.
SV-85653r1_ruleDocument behavior if file validation fails must be set.
SV-85655r1_ruleExcel attachments opened from Outlook must be in Protected View.
SV-85657r1_ruleWarning Bar settings for VBA macros must be configured.
SV-85659r1_ruleWEBSERVICE functions must be disabled.
SV-85661r1_ruleCorrupt workbook options must be disallowed.
SV-85663r1_ruleMacros must be blocked from running in Office files from the Internet.
SV-86263r1_ruleFiles on local Intranet UNC must be opened in Protected View.