Policy
Only trust VBA macros that use V3 signatures
Microsoft Office 5532.1000
Policy overview
Key metadata and intent for this policy.
Supported OS tags: Windows10
This policy setting controls whether only VBA macros that use V3 signatures can be trusted and run in the application. If you enable this policy setting, only VBA macros that use V3 signatures can be trusted and run in the application. If you enable this policy setting, we also recommend that you enable the “VBA Macro Notification Settings” policy setting for the application and then select the “Disable all except digitally signed macros” option. Note: Before enabling this policy setting, you should upgrade your existing VBA macros to use V3 signatures. If you disable or don’t configure this policy setting, VBA macros signed with legacy signature schemes can be trusted and run in the application.
Registry values
How enabled and disabled states update the registry.
| Registry location | Type | Enabled value | Disabled value |
|---|---|---|---|
| HKCU\software\policies\microsoft\vba\security\onlytrustvbasignaturev3 | REG_DWORD | 1 | 0 |
Policy elements
Inputs and configuration options exposed by this policy.
This policy has no additional user input fields.
Other policies in this category
Explore related policies at the same level.
- UserAllow mix of policy and user locationsWindows7
- UserSet the minimum operating system for verifying agile VBA signaturesWindows7
- UserTrust legacy VBA signaturesWindows7
- UserTrusted Location #1Windows7
- UserTrusted Location #10Windows7
- UserTrusted Location #11Windows7
- UserTrusted Location #12Windows7
- UserTrusted Location #13Windows7
- UserTrusted Location #14Windows7
- UserTrusted Location #15Windows7
- UserTrusted Location #16Windows7
- UserTrusted Location #17Windows7