Updated July 20, 2022:
We’re resuming the rollout of this change in Current Channel. Based on our review of customer feedback, we’ve made updates to both our end user and our IT admin documentation...
Updated Jul 20, 2022
Version 9.0
Blog Post
We are dealing internally with the topic "MC322553" (Blocking internet macros by default in Office) as part of Service Management, IT Security and User Adaptation. We know the following sources of information, but they do not yet help us in detail:
- https://admin.microsoft.com/?#/MessageCenter/:/messages/MC322553
- https://support.microsoft.com/de-de/topic/die-einstellungen-f%C3%BCr-vertrauensw%C3%BCrdige-dokumente-wurden-ge%C3%A4ndert-0be30e4c-926a-4761-bdef-3f91097beb5a
- https://techcommunity.microsoft.com/t5/microsoft-365-blog/helping-users-stay-safe-blocking-internet-macros-by-default-in/ba-p/3071805
- https://techcommunity.microsoft.com/t5/excel-blog/excel-4-0-xlm-macros-now-restricted-by-default-for-customer/ba-p/3057905
- https://docs.microsoft.com/en-us/DeployOffice/security/internet-macros-blocked
Therefore, we have summarised some questions for clarification:
- Which default setting is recommended by Microsoft?
- What central setting options (e.g. GPO) are there in this context?
- How are documents uploaded by guests in M365 classified?
- How are shared documents classified that are located in another tenant or MS OneDrive for Business?
- If VBA macros are blocked (by default):
o What exactly are the effects?
o What is the easiest way to share the macro in the file?
o How does macro sharing work on MS OneDrive for Business and MS Teams and MS SharePoint online?
o Does "macro release" also apply directly to other users or does everyone who wants to use this file with the macro have to "release" it individually? - Is it possible to trace who has classified a document (with a macro) as "secure"?
- How does the signature of VBA macros work?
- What user adoption measures does Microsoft recommend?
- What material is there from MS that we can use?