Policy
Configure legacy RSA public key size
Microsoft Office
Policy overview
Key metadata and intent for this policy.
This policy setting allows you to configure whether Office displays a digital signature as legacy because of the number of RSA public key bits used in the digital signature. If you enable this policy setting, you can specify the number of bits that Office treats as legacy in a digital signature. For example: 512, 768, etc. If you don’t configure this policy setting, Office won’t treat any digital signatures as legacy because of the number of bits in the public key. Enabling this policy causes the minimum RSA public key size to be the next largest option.
Registry values
How enabled and disabled states update the registry.
No explicit registry values are set for enabled or disabled states.
Policy elements
Inputs and configuration options exposed by this policy.
| Scope | Element | Type | Registry mapping | Constraints & behavior | Copy |
|---|---|---|---|---|---|
| User | L_SelectDigitalSignatureHashingAlgorithmDropID ID L_SelectDigitalSignatureHashingAlgorithmDropID | enum | Path software\policies\microsoft\office\16.0\common\signatures Value name legacyrsabits Type REG_DWORD | Options: $(string.L_SelectDigitalSignatureAlgorithmBitsStr0) (0), $(string.L_SelectDigitalSignatureAlgorithmBitsStr1) (512), $(string.L_SelectDigitalSignatureAlgorithmBitsStr2) (768), $(string.L_SelectDigitalSignatureAlgorithmBitsStr3) (1024), $(string.L_SelectDigitalSignatureAlgorithmBitsStr4) (1536), $(string.L_SelectDigitalSignatureAlgorithmBitsStr5) (2048) |