STIGQter: STIG Summary: Microsoft Office System 2010 STIG Version: 1 Release: 12 Benchmark Date: 27 Apr 2018:

Office client polling of Sharepoint servers published links must be disabled.

DISA Rule

SV-33471r1_rule

Vulnerability Number

V-17670

Group Title

DTOO208 - Office client polling from Office Server

Rule Version

DTOO208 - Office System

Severity

CAT II

CCI(s)

• CCI-000213 - The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies.

Weight

10

Fix Recommendation

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2010 -> Server Settings “Disable the Office client from polling the SharePoint Server for published links" to “Enabled”.

Check Contents

The policy value for User Configuration -> Administrative Templates -> Microsoft Office 2010 -> Server Settings “Disable the Office client from polling the SharePoint Server for published links” must be set to “Enabled”.

Procedure: Use the Windows Registry Editor to navigate to the following key:

HKCU\Software\Policies\Microsoft\Office\14.0\common\portal

Criteria: If the value LinkPublishingDisabled is REG_DWORD = 1, this is not a finding.

Vulnerability Number

V-17670

Documentable

False

Rule Version

DTOO208 - Office System

Severity Override Guidance

The policy value for User Configuration -> Administrative Templates -> Microsoft Office 2010 -> Server Settings “Disable the Office client from polling the SharePoint Server for published links” must be set to “Enabled”.

Procedure: Use the Windows Registry Editor to navigate to the following key:

HKCU\Software\Policies\Microsoft\Office\14.0\common\portal

Criteria: If the value LinkPublishingDisabled is REG_DWORD = 1, this is not a finding.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

2105

Comments