Details

This policy setting controls how Office handles documents when they fail file validation. If you enable this policy setting, you can configure the following options for files that fail file validation:- Block files completely. Users cannot open the files.- Open files in Protected View and disallow edit. Users cannot edit the files. This is also how Office handles the files if you disable this policy setting.- Open files in Protected View and allow edit. Users can edit the files. This is also how Office handles the files if you do not configure this policy setting.If you disable this policy setting, Office follows the ‘Open files in Protected View and disallow edit’ behavior. If you do not configure this policy setting, Office follows the ‘Open files in Protected View and allow edit’ behavior.

Solution

Set the policy value for User Configuration -> Administrative Templates -> Microsoft PowerPoint 2016 -> PowerPoint Options -> Security -> Trust Center -> Protected View ‘Set document behavior if file validation fails’ to ‘Disabled’.

Supportive Information

The following resource is also helpful.

• http://iasecontent.disa.mil/stigs/zip/U_Microsoft_PowerPoint_2016_V1R1_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Windows.

References

• 800-53|SC-18(4)
• CAT|II
• CCI|CCI-001170
• Rule-ID|SV-86031r1_rule
• STIG-ID|DTOO292
• Vuln-ID|V-71407

Source

• Tenable.com/audits