Details
This policy setting controls whether contact photos are downloaded from the Active Directory.
If you enable this policy setting, contact photos are not downloaded.
If you disable or you do not configure this policy setting, contact photos are downloaded. The recommended state for this setting is: Enabled
Rationale:
Disabling or not configuring this setting allows Outlook to download contact photos from Active Directory. Photos downloaded from Active Directory could be shared on social networks, some organizations may not want portraits of their employees to circulate widely. For example: law enforcement, intelligence, and military agencies may need some of their staff to remain anonymous.
Solution
To implement the recommended configuration state, set the following Group Policy setting to Enabled.
User ConfigurationAdministrative TemplatesMicrosoft Outlook 2013Outlook Social ConnectorDo Not Download Photos from Active Directory
Impact:
Enable this setting to prevent Outlook from downloading photos stored in Active Directory.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.