2.6.6.6.2.1.1 Audit Procedure Path incorrect

1 votes

The Audit procedure for 2.6.6.6.2.1.1 in the Office Enterprise benchmark suggests the path to be: "HKEY_USERS\[USER SID]\SOFTWARE\Policies\Microsoft\office\16.0\excel\powerpoint\security\fileblock:binaryfiles". The excel directory does not contain a powerpoint directory. This can be fixed by removing "excel" from the path, since this control is targeted at the powerpoint section.
This error is included in the currently published version 1.2.0 and the vNext.

Done Benchmark Community Suggestion Suggested by: Mehmanesh (28 Oct, '25) • Upvoted: 28 Oct, '25 • Comments: 1

Comments: 1
Oldest • Newest • Most likes • Fewest likes

25 Nov, '25
Chris Boldiston Admin
Hi Mehmanesh

My apologies for not responding sooner. These types of request need to be made on CIS Workbench in the applicable community. That is the place for collaboration and discussion of benchmark recommendations. This is a link to the community, and we welcome contributions so please participate https://workbench.cisecurity.org/communities/39

Best regards

Chris

2.6.6.6.2.1.1 Audit Procedure Path incorrect

Comments: 1 Oldest • Newest • Most likes • Fewest likes

Comments: 1
Oldest • Newest • Most likes • Fewest likes