DTOO321 - Office System - Encrypt document properties must be configured for OLE documents.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

This policy setting allows you configure if the document properties are encrypted. This applies to OLE documents (Office 97-2003 compatible) if the application is configured for CAPI RC4. Disabling this setting will prevent the encryption of document properties, which may expose sensitive data.

Solution

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2010 -> Security Settings 'Encrypt document properties' to 'Enabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_OfficeSystem_2010_V1R12_STIG.zip

Item Details

References: CAT|II, CCI|CCI-002476, Rule-ID|SV-34089r1_rule, STIG-ID|DTOO321, Vuln-ID|V-26704

Plugin: Windows

Control ID: 7a6cc018fbfe9bf77cec1fc0799bccd15a66193fd3ca84a9ce996b0844554011