DTOO199 - Changing permissions on rights managed content for users must be enforced.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

This setting controls whether Office 2013 users can change permissions for content that is protected with Information Rights Management (IRM). The Information Rights Management feature of Office 2013 allows individuals and administrators to specify access permissions to Word documents, Excel workbooks, PowerPoint presentations, InfoPath templates and forms, and Outlook email messages. This functionality helps prevent sensitive information from being printed, forwarded, or copied by unauthorized people.

Solution

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2013 -> Manage Restricted Permissions 'Prevent users from changing permissions on rights managed content' to 'Disabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_OfficeSystem_2013_V2R1_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-3, CAT|II, CCI|CCI-002165, Rule-ID|SV-228554r557517_rule, STIG-ID|DTOO199, STIG-Legacy|SV-52748, STIG-Legacy|V-17765, Vuln-ID|V-228554

Plugin: Windows

Control ID: 6fa2ca19859d4491d791ff4109160c972b7223789306b3f45c5aacf71aa24c3e