Information
This policy setting allows administrators to disable all trusted locations in the specified applications.
The recommended state for this setting is: Enabled.
Rationale:
Trusted locations specified in the Trust Center are used to define file locations that are assumed to be safe. Content, code, and add-ins are allowed to load from trusted locations with a minimal amount of security, without prompting the users for permission. If a dangerous file is opened from a trusted location, it will not be subject to standard security measures and could harm the user's computers or data.
Impact:
All trusted locations (those specified in the Trust Center) in the specified applications are ignored, including any trusted locations established by Office 2016 during setup, deployed to users using Group Policy, or added by users themselves. Users will be prompted again when opening files from trusted locations.
Solution
To establish the recommended configuration via GP, set the following UI path to Enabled.
User Configuration\Administrative Templates\Microsoft Excel 2016\Excel Options\Security\Trust Center\Trusted Locations\Disable all trusted locations
Default Value:
Disabled. (All trusted locations (those specified in the Trust Center) in the specified applications are assumed to be safe.)