Policy

Configure minimum RSA public key size

Microsoft Office 5532.1000

Back to categoryOpen picker

Policy overview

Key metadata and intent for this policy.

ClassUser
CategoryMicrosoft Office 2016 > Security Settings > Digital Signatures
Supported onWindows7

This policy setting allows you to configure the minimum number of RSA public key bits Office allows to create digital signatures. If you enable this policy setting, you can specify the minimum number of bits that can be used to create a digital signature. For example: 1024, 2048, etc. If you disable or don’t configure this policy setting, Office allows all RSA keys, unless the legacy or invalid RSA policy settings are configured. If the legacy or invalid RSA public key bits policy settings are configured, then the default for this setting will be the next larger value. For example, if the number of RSA public key bits is set to 768, then this setting would default to 1024.

Internal name
L_SelectDigitalSignatureMinRSABits
Policy ID
b176cbe04881
Elements
1

Registry values

How enabled and disabled states update the registry.

No explicit registry values are set for enabled or disabled states.

Policy elements

Inputs and configuration options exposed by this policy.

ElementTypeRegistry mappingConstraints & behavior
L_SelectDigitalSignatureHashingAlgorithmDropID
ID L_SelectDigitalSignatureHashingAlgorithmDropID
enum
HKCU\software\policies\microsoft\office\16.0\common\signatures\minsigningrsabits
Type REG_DWORD
Options: $(string.L_SelectDigitalSignatureAlgorithmBitsStr0) (0), $(string.L_SelectDigitalSignatureAlgorithmBitsStr1) (512), $(string.L_SelectDigitalSignatureAlgorithmBitsStr2) (768), $(string.L_SelectDigitalSignatureAlgorithmBitsStr3) (1024), $(string.L_SelectDigitalSignatureAlgorithmBitsStr4) (1536), $(string.L_SelectDigitalSignatureAlgorithmBitsStr5) (2048), $(string.L_SelectDigitalSignatureAlgorithmBitsStr6) (4096)

Other policies in this category

Explore related policies at the same level.

View all policies in this category