Information
This policy setting controls whether encrypted macros in Open XML documents are required to be scanned with antivirus software before being opened.
The recommended state for this setting is: Enabled: Scan encrypted macros (default).
Rationale:
When an Office Open XML document is rights-managed or password protected, macros that are embedded in the document are encrypted along with the rest of the workbook's contents. Macros can contain malicious code which could cause a virus to load undetected and lead to data loss or reduced application functionality.
Impact:
None - this is the default behavior.
By default, encrypted macros will be disabled unless they are scanned by antivirus software immediately before being loaded.
Solution
To establish the recommended configuration via GP, set the following UI path to Enabled: Scan encrypted macros (default).
User Configuration\Administrative Templates\Microsoft Word 2016\Word Options\Security\Trust Center\Scan encrypted macros in Word Open XML Documents
Default Value:
Enabled: Scan encrypted macros