Free DISA STIG and SRG Library | Vaulted
  1. Security Guide Library
  2. Microsoft Office 365 ProPlus Security Technical Implementation Guide
  3. V-223285
Removed

V-223285

Document metadata for rights managed Office Open XML files must be protected.

Finding ID
O365-CO-000002
Rule ID
SV-223285r508019_rule
Severity
Cat II
CCE
(None)
Group Title
SRG-APP-000429
CCI
CCI-002476
Target Key
(None)
Documentable
No
Discussion

This policy setting determines whether metadata is encrypted in Office Open XML files that are protected by Information Rights Management (IRM). If you enable this policy setting, Excel, PowerPoint, and Word encrypt metadata stored in rights-managed Office Open XML files and override any configuration changes on users' computers. If you disable this policy setting, Office 2016 applications cannot encrypt metadata in rights-managed Office Open XML files, which can reduce security. If you do not configure this policy setting, when Information Rights Management (IRM) is used to restrict access to an Office Open XML document, any metadata associated with the document is not encrypted.

Fix Text

Set the policy value for User Configuration >> Administrative Templates >> Microsoft Office 2016 >> Security Settings "Protect document metadata for rights managed Office Open XML Files" to "Enabled".

Check Content

Verify the policy value for User Configuration >> Administrative Templates >> Microsoft Office 2016 >> Security Settings "Protect document metadata for rights managed Office Open XML Files" is set to "Enabled". Use the Windows Registry Editor to navigate to the following key: HKCU\Software\Policies\Microsoft\Office\16.0\common\security If the value DRMEncryptProperty is REG_DWORD = 1, this is not a finding.

Vaulted is more than a library.

SIGN UP FOR FREE