Details
This setting controls whether Office 2013 users can change permissions for content that is protected with Information Rights Management (IRM). The Information Rights Management feature of Office 2013 allows individuals and administrators to specify access permissions to Word documents, Excel workbooks, PowerPoint presentations, InfoPath templates and forms, and Outlook email messages. This functionality helps prevent sensitive information from being printed, forwarded, or copied by unauthorized people.
Solution
Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2013 -> Manage Restricted Permissions ‘Prevent users from changing permissions on rights managed content’ to ‘Disabled’.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Windows.
References
- 800-53|AC-3(4)
- CAT|II
- CCI|CCI-002165
- Rule-ID|SV-228554r557517_rule
- STIG-ID|DTOO199
- STIG-Legacy|SV-52748
- STIG-Legacy|V-17765
- Vuln-ID|V-228554