DISA STIG Microsoft Excel 2016 v1r2

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG Microsoft Excel 2016 v1r2

Updated: 5/28/2024

Authority: DISA STIG

Plugin: Windows

Revision: 1.14

Estimated Item Count: 43

File Details

Filename: DISA_STIG_Microsoft_Excel_2016_v1r2.audit

Size: 95.3 kB

MD5: 33e5eb9b7e98d426cade75583d6c370f
SHA256: 4f555b6b56ba96404846228852c0b885b83fc78258573902ff42c5c022c24891

Audit Items

DescriptionCategories
DISA_STIG_Microsoft_Excel_2016_v1r2.audit for Microsoft Excel 2016, from DISA STIG Microsoft Excel 2016 v1r2
DTOO104 - Disabling of user name and password syntax from being used in URLs must be enforced.

CONFIGURATION MANAGEMENT

DTOO105 - Open/Save actions for Excel 4 macrosheets and add-in files must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO106 - Open/Save actions for Excel 4 workbooks must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO107 - Open/Save actions for Excel 4 worksheets must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO108 - Actions for Excel 95 workbooks must be configured to edit in Protected View.

SYSTEM AND INFORMATION INTEGRITY

DTOO109 - Actions for Excel 95-97 workbooks and templates must be configured to edit in Protected View.

SYSTEM AND INFORMATION INTEGRITY

DTOO110 - Blocking as default file block opening behavior must be enforced.

SYSTEM AND INFORMATION INTEGRITY

DTOO111 - Enabling IE Bind to Object functionality must be present.

CONFIGURATION MANAGEMENT

DTOO112 - Open/Save actions for Dif and Sylk files must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO113 - Open/Save actions for Excel 2 macrosheets and add-in files must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO114 - Open/Save actions for Excel 2 worksheets must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO115 - Open/Save actions for Excel 3 macrosheets and add-in files must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO116 - Open/Save actions for Excel 3 worksheets must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO117 - Saved from URL mark to assure Internet zone processing must be enforced.

CONFIGURATION MANAGEMENT

DTOO119 - Configuration for file validation must be enforced.

CONFIGURATION MANAGEMENT

DTOO120 - Open/Save actions for web pages and Excel 2003 XML spreadsheets must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO121 - Files from the Internet zone must be opened in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO122 - Open/Save actions for dBase III / IV files must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO123 - Navigation to URLs embedded in Office products must be blocked.

CONFIGURATION MANAGEMENT

DTOO124 - Scripted Window Security must be enforced.

CONFIGURATION MANAGEMENT

DTOO126 - Add-on Management functionality must be allowed.

CONFIGURATION MANAGEMENT

DTOO127 - Add-ins to Office applications must be signed by a Trusted Publisher.

SYSTEM AND INFORMATION INTEGRITY

DTOO129 - Links that invoke instances of Internet Explorer from within an Office product must be blocked.

CONFIGURATION MANAGEMENT

DTOO131 - Trust Bar Notifications for unsigned application add-ins must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO132 - File Downloads must be configured for proper restrictions.

CONFIGURATION MANAGEMENT

DTOO133 - All automatic loading from trusted locations must be disabled.

CONFIGURATION MANAGEMENT

DTOO134 - Disallowance of trusted locations on the network must be enforced.

CONFIGURATION MANAGEMENT

DTOO139 - The Save commands default file format must be configured.

CONFIGURATION MANAGEMENT

DTOO142 - The scanning of encrypted macros in open XML documents must be enforced.

SYSTEM AND INFORMATION INTEGRITY

DTOO145 - Macro storage must be in personal macro workbooks.

CONFIGURATION MANAGEMENT

DTOO146 - Trust access for VBA must be disallowed.

CONFIGURATION MANAGEMENT

DTOO209 - Protection from zone elevation must be enforced.

CONFIGURATION MANAGEMENT

DTOO211 - ActiveX Installs must be configured for proper restriction.

CONFIGURATION MANAGEMENT

DTOO288 - Files in unsafe locations must be opened in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO292 - Document behavior if file validation fails must be set - DisableEditFromPV

CONFIGURATION MANAGEMENT

DTOO292 - Document behavior if file validation fails must be set - openinprotectedview

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO293 - Excel attachments opened from Outlook must be in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO304 - Warning Bar settings for VBA macros must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO418 - WEBSERVICE functions must be disabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO419 - Corrupt workbook options must be disallowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO600 - Macros must be blocked from running in Office files from the Internet.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO605 - Files on local Intranet UNC must be opened in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION