Details
This policy setting specifies how Word behaves when opening a document that contains custom XML markup. If you enable this policy setting, you can set the behavior to one of the following: – 0: Do not prompt the user and silently remove the custom XML markup. – 1: Prompt the user regarding the loss of custom XML markup. This is the default option. – 2: Prompt the user regarding the loss of custom XML markup, and do not allow them to suppress this prompt. – 3: Prompt the user regarding the loss of custom XML markup, and open the file read-only. – 4: Prompt the user regarding the loss of custom XML markup, do not allow them to suppress this prompt, and open the file read-only. – 5: Do not prompt the user and silently remove the custom XML markup, but open the file read-only. The recommended state for this setting is: Enabled. The removal of custom XML markup is the result of a United States court ruling on December 22, 2009. Word does not include a particular custom XML tagging implementation. Word can be configured to notify users when they are opening a document that contains custom XML markup.
Solution
To implement the recommended configuration state, set the following Group Policy setting to Enabled. User ConfigurationAdministrative TemplatesMicrosoft Word 2013Word OptionsAdvancedCustom Markup Warning Impact: Configure this policy setting is configured to be Enabled, also select one of the following options so that the user is notified that the custom XML markup is being removed: – 1: Prompt the user regarding the loss of custom XML markup. This is the default option. – 2: Prompt the user regarding the loss of custom XML markup, and do not allow them to suppress this prompt. – 3: Prompt the user regarding the loss of custom XML markup, and open the file read-only. – 4: Prompt the user regarding the loss of custom XML markup, do not allow them to suppress this prompt, and open the file read-only.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: System and Information Integrity.This control applies to the following type of system Windows.