Hey everyone! I'm looking for advice on how to secure our Office macro files. Recently, our company bought some Excel files that contain macros which are essential for our workflows. However, we're concerned about the security risks they pose. Ideally, we want to allow macro execution on a per-file basis. We're currently storing our files on SharePoint Online and OneDrive, and we have Defender P2 with ASR rules activated. How do you all protect your macro files while still being able to use them? If anyone has a setup that works well, I'd love to hear it! Also, we already scan and block macro downloads from untrusted sources, and filter out macro-enabled or password-protected files in our emails. Any solutions would be greatly appreciated!
3 Answers
We implement Intune Attack Surface Reduction rules and have a specific Entra group for users who are allowed to bypass macro blocking. This helps keep things secure while still allowing necessary macros to run.
Sounds like you’ve got a tricky situation! One option is to store your macro-enabled files in a designated folder and add that folder to the Trusted Locations in Excel. You can then set a policy to block all macros without notifications, except for those in the Trusted Locations, which will function as usual.
We simply block macros entirely. It's safer that way, but it does limit functionality unless you can trust and allow specific files.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures