Policy
Configure invalid DSA public key size
Microsoft Office
Policy overview
Key metadata and intent for this policy.
This policy setting allows you to configure whether Office displays a digital signature as invalid because of the number of DSA public key bits used in the digital signature. If you enable this policy setting, you can specify the number of bits that Office treats as invalid in a digital signature. For example: 512, 768, etc. If you don’t configure this policy setting, Office won’t treat any digital signatures as invalid because of the number of bits in the public key. Enabling this policy causes the minimum DSA public key size to be the next largest option.
Registry values
How enabled and disabled states update the registry.
No explicit registry values are set for enabled or disabled states.
Policy elements
Inputs and configuration options exposed by this policy.
| Scope | Element | Type | Registry mapping | Constraints & behavior | Copy |
|---|---|---|---|---|---|
| User | L_SelectDigitalSignatureHashingAlgorithmDropID ID L_SelectDigitalSignatureHashingAlgorithmDropID | enum | Path software\policies\microsoft\office\16.0\common\signatures Value name invaliddsabits Type REG_DWORD | Options: $(string.L_SelectDigitalSignatureAlgorithmBitsStr0) (0), $(string.L_SelectDigitalSignatureAlgorithmBitsStr1) (512), $(string.L_SelectDigitalSignatureAlgorithmBitsStr2) (768), $(string.L_SelectDigitalSignatureAlgorithmBitsStr3) (1024) |