Details
This policy setting controls whether Outlook users can publish their calendars to a DAV
server. If you enable this policy setting, Outlook users cannot publish their calendars to a
DAV server. If you disable or do not configure this policy setting, Outlook users can share
their calendars with others by publishing them to a server that supports the World Wide
Web Distributed Authoring and Versioning (WebDAV) protocol. The recommended state
for this setting is- Enabled.
*Rationale*
By default, Outlook 2010 users can share their calendars with others by publishing them to
a server that supports the World Wide Web Distributed Authoring and Versioning
(WebDAV) protocol. Unlike the Microsoft Office.com Calendar Sharing Service, which
allows users to manage other people’s access to their calendars, DAV access restrictions
can only be accomplished through server and folder permissions, and might require the
assistance of the server administrator to set up and maintain. If these permissions are not
managed properly, unauthorized people could access sensitive information.
Solution
To implement the recommended configuration state, set the following Group Policy setting
to Enabled.
User ConfigurationAdministrative TemplatesMicrosoft Outlook 2010Outlook
OptionsPreferencesCalendar OptionsOffice.com Sharing ServicePrevent publishing to
a DAV server
Impact-Enabling this setting will cause disruptions for Outlook 2010 users who publish their
calendar data to a DAV server. Such users will need to publish their calendar data to a
different resource, such as the Microsoft Online Calendar Sharing Service, or stop
publishing their calendar data. Users who do not publish calendar data will not be affected
by this setting.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.