UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

In Word, macros must be blocked from running, even if Enable all macros is selected in the Macro Settings section of the Trust Center.


Overview

Finding ID Version Rule ID IA Controls Severity
V-223415 O365-WD-000016 SV-223415r508019_rule Medium
Description
This policy setting allows you to block macros from running in Office files that come from the Internet. If you enable this policy setting, macros are blocked from running, even if "Enable all macros" is selected in the Macro Settings section of the Trust Center. Also, instead of having the choice to "Enable Content", users will receive a notification that macros are blocked from running. If the Office file is saved to a trusted location or was previously trusted by the user, macros will be allowed to run. If you disable or do not configure this policy setting, the settings configured in the Macro Settings section of the Trust Center determine whether macros run in Office files that come from the Internet.
STIG Date
Microsoft Office 365 ProPlus Security Technical Implementation Guide 2021-03-22

Details

Check Text ( C-25088r442464_chk )
Verify the policy value for User Configuration >> Administrative Templates >> Microsoft Word 2016 >> Word Options >> Security >> Trust Center "Block macros from running in Office files from the Internet" is set to "Enabled".

Use the Windows Registry Editor to navigate to the following key:

HKCU\Software\Policies\Microsoft\Office\16.0\word\security

If the value blockcontentexecutionfrominternet is REG_DWORD = 1, this is not a finding.
Fix Text (F-25076r442465_fix)
Set the policy value for User Configuration >> Administrative Templates >> Microsoft Word 2016 >> Word Options >> Security >> Trust Center "Block macros from running in Office files from the Internet" to "Enabled".