Block all internet macros (ignore trusted locations or publishers)
Jump to overview

Policy overview

Key metadata and intent for this policy.

User
Category
Microsoft Office 2016 > Security Settings
Supported on
Windows 10

Supported OS tags: Windows10

This policy setting removes the trusted location and trusted publisher exceptions for files downloaded from the internet with Mark of the Web (MOTW). By default, Office blocks macros from the internet but allows exceptions for files that are either in trusted locations or signed by trusted publishers. If you enable this policy setting, all macros in files downloaded from the internet will be blocked, including those in trusted locations or signed by trusted publishers. This provides maximum protection against internet-based macro threats. If you disable or don't configure this policy setting, the default behavior applies where macros from the internet are blocked except when the file is in a trusted location or signed by a trusted publisher.

Internal name
L_BlockMOTWMacroInTrustedOrSigned
Policy ID
f792a1c311fd
Elements
0

Registry values

How enabled and disabled states update the registry.

ScopeRegistry locationTypeEnabled valueDisabled valueCopy
User
Path
software\policies\microsoft\office\16.0\common\security
Value name
blockmotwmacrointrustedorsigned
REG_DWORD
HKCU
1
HKCU
0
Registry location
Type REG_DWORD · User
Path
software\policies\microsoft\office\16.0\common\security
Value name
blockmotwmacrointrustedorsigned
Hive
HKCU
Enabled value
1
Disabled value
0

Policy elements

Inputs and configuration options exposed by this policy.

This policy has no additional user input fields.