STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to STIGs

Microsoft OneNote 2016 Security Technical Implementation Guide

Version

V2R1

Release Date

Nov 26, 2025

SCAP Benchmark ID

Microsoft_OneNote_2016

Total Checks

11

Tags

other
CAT I: 1CAT II: 10CAT III: 0

This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.

Export CKLExport CSVExport JSONDownload STIG ZIP

Checks (11)

V-238044MEDIUMDisabling of user name and password syntax from being used in URLs must be enforced.V-238045MEDIUMEnabling IE Bind to Object functionality must be present.V-238046MEDIUMSaved from URL mark to assure Internet zone processing must be enforced.V-238047MEDIUMNavigation to URLs embedded in Office products must be blocked.V-238048MEDIUMScripted Window Security must be enforced.V-238049MEDIUMAdd-on Management functionality must be allowed.V-238050MEDIUMLinks that invoke instances of Internet Explorer from within an Office product must be blocked.V-238051MEDIUMFile Downloads must be configured for proper restrictions.V-238052MEDIUMProtection from zone elevation must be enforced.V-238053MEDIUMActiveX Installs must be configured for proper restriction.V-279944HIGHThe version of OneNote running on the system must be a supported version.