STIGQter STIGQter: STIG Summary:

Microsoft OneDrive Security Technical Implementation Guide

Version: 2

Release: 1 Benchmark Date: 13 Nov 2020

SV-215529r569322_ruleDisabling of user name and password syntax from being used in URLs must be enforced.
SV-215530r569322_ruleEnabling IE Bind to Object functionality must be present.
SV-215531r569322_ruleSaved from URL mark to assure Internet zone processing must be enforced.
SV-215532r569322_ruleNavigation to URLs embedded in Office products must be blocked.
SV-215533r569322_ruleScripted Window Security must be enforced.
SV-215534r569322_ruleAdd-on Management functionality must be allowed.
SV-215535r569322_ruleLinks that invoke instances of Internet Explorer from within an Office product must be blocked.
SV-215536r569322_ruleFile Downloads must be configured for proper restrictions.
SV-215537r569322_ruleProtection from zone elevation must be enforced.
SV-215538r569322_ruleActiveX Installs must be configured for proper restriction.
SV-230562r569322_ruleOneDrive must only allow synchronizing of accounts for DoD organization instances.
SV-230563r569322_ruleExploit Protection mitigations in Windows 10 must be configured for OneDrive.exe.
SV-230564r569322_ruleThe use of personal accounts for OneDrive synchronization must be disabled.