Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Tuesday, June 26, 2018 4:59 PM
We have a GPO set up that sets the "VBA Macro Notification Settings" to "Enabled:Disable all with notification" and the "Require that application add-ins are signed by Trusted Publisher" setting to Enabled. Despite all of this, macros in the Trusted Locations (set by GPO) do not run, including it seems ones that are located in the Microsoft Office Default Trusted Locations (i.e. Program Files\Microsoft Office 16\Root\Office16\XLSTART.
I've verified that the Trusted Locations are showing up in the appropriate Office application but no matter what I try, they don't seem to change any of the security settings for macros in these locations.
We are Office 2016 on Win 10 1709
Thanks!
WB
All replies (2)
Wednesday, June 27, 2018 9:58 AM
Hi WB,
Based on your description, I tested these settings in my environment and I don't get your problem.
After setting the GP, I open Excel file and I can get a bar as shown in the following picture:
I can wok fine after click Enable Content.
Do this problem appear with all Excel files?
Any other settings are set in Excel?
Please provide more information about your problem.
Regards,
Emi
Please remember to mark the replies as answers if they helped. If you have feedback for TechNet Subscriber Support, contact [email protected].
Click here to learn more. Visit the dedicated forum to share, explore and talk to experts about Microsoft Teams.
Wednesday, June 27, 2018 2:57 PM
We do have other Group Policy settings that apply to Excel. We are essentially using the CIS standards for Group Policy both in Office and the OS. This problem appears with different files in both Word and Excel. My understanding though is that having a file in Trusted Locations exempts it from the normal security checks.
Per MSFT: /en-us/deployoffice/security/designate-trusted-locations-for-files-in-office
When a folder is designated as a trusted file source, any file that is saved in the folder is assumed to be a trusted file. When a user opens a trusted file, all content in the file is enabled and active, and user aren't notified about any potential risks that might be contained in the file. These can include, for example, unsigned add-ins and Microsoft Visual Basic for Applications (VBA) macros, links to content on the Internet, or database connections.
I have reviewed our Office GPO and didn't see anything that appeared as if it would affect Trusted Locations.
Thanks!
WB