Support tip: Several Office settings in settings catalog may need parent settings enabled

Microsoft

Feb 18, 2022

Updated 05/03/2022: The updated settings are available in Microsoft Endpoint Manager. We’ve updated this post and the table below to reflect the new setting locations and parent settings.

We recently identified several Office settings in the Microsoft Intune settings catalog that, when enabled, do not automatically enable the required parent setting. This can lead to the policy not applying as expected if you did not configure the parent setting.

To help identify which configuration settings have this behavior, we recently made a user interface (UI) change to mark them as (deprecated) in the Settings catalog (preview) page. See the full list below.

We have released new device configuration settings (with the same name) that will automatically enforce the dependencies.

What actions do I need to take?

Check your device configuration profiles to see if you are using a deprecated setting and update your profiles to use the new, replacement setting instead.

The following table lists the location of the deprecated setting in the settings catalog, as well as the new setting location and its required parent setting. For example, you can find the first setting listed below (Allow Active X One Off Forms (User)) in the Microsoft Endpoint Manager admin center Settings picker in Microsoft Outlook 2016 > Security> Security Form Settings, under the required parent setting Outlook Security Mode (User).

List of settings by category

Deprecated settings location	Replacement setting location (nested under required parent setting)
Microsoft Outlook 2016\Security > Allow Active X One Off Forms (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Allow Active X One Off Forms (User)
Microsoft Outlook 2016\Security\Trust Center > Allow hyperlinks in suspected phishing e-mail messages (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Allow hyperlinks in suspected phishing e-mail messages (User)
*Microsoft Outlook 2016\Security\Security Form Settings\Custom Form Security* > Allow scripts in one-off Outlook forms (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Allow scripts in one-off Outlook forms (User)
Microsoft Outlook 2016\Security\Security Form Settings\Attachment Security > Allow users to demote attachments to Level 2 (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Allow users to demote attachments to Level 2 (User)
Microsoft Outlook 2016\Account Settings\Exchange > Authentication with Exchange Server (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Authentication with Exchange Server (User)
Microsoft Outlook 2016\Security\Security Form Settings\Programmatic Security > Configure Outlook object model prompt when accessing an address book (User) (Deprecated) > Configure Outlook object model prompt When accessing the Formula property of a UserProperty object (User) (Deprecated) > Configure Outlook object model prompt when executing Save As (User) (Deprecated) > Configure Outlook object model prompt when reading address information (User) (Deprecated) > Configure Outlook object model prompt when responding to meeting and task requests (User) (Deprecated) > Configure Outlook object model prompt when sending mail (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Configure Outlook object model prompt when accessing an address book (User) ⇒ Configure Outlook object model prompt When accessing the Formula property of a UserProperty object (User) ⇒ Configure Outlook object model prompt when executing Save As (User) ⇒ Configure Outlook object model prompt when reading address information (User) ⇒ Configure Outlook object model prompt when responding to meeting and task requests (User) ⇒ Configure Outlook object model prompt when sending mail (User)
Microsoft Publisher 2016\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins (User) (Deprecated)	Microsoft Publisher 2016\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins (User)
Microsoft Excel 2016\Excel Options\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins and block them (User) (Deprecated)	Microsoft Excel 2016\Excel Options\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins and block them (User)
Microsoft PowerPoint 2016\PowerPoint Options\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins and block them (User) (Deprecated)	Microsoft PowerPoint 2016\PowerPoint Options\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins and block them (User)
Microsoft Project 2016\Project Options\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins and block them (User) (Deprecated)	Microsoft Project 2016\Project Options\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins and block them (User)
Microsoft Visio 2016\Visio Options\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins and block them (User) (Deprecated)	Microsoft Visio 2016\Visio Options\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins and block them (User)
Microsoft Word 2016\Word Options\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins and block them (User) (Deprecated)	Microsoft Word 2016\Word Options\Security\Trust Center > Disable Trust Bar Notification for unsigned application add-ins and block them (User)
Microsoft Outlook 2016\Security\Security Form Settings\Attachment Security > Display Level 1 attachments (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Display Level 1 attachments (User)
Microsoft Outlook 2016\Outlook Options\Other\Advanced > Do not allow Outlook object model scripts to run for public folders (User) (Deprecated) > Do not allow Outlook object model scripts to run for shared folders (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Do not allow Outlook object model scripts to run for public folders (User) ⇒ Do not allow Outlook object model scripts to run for shared folders (User)
Microsoft Outlook 2016\Account Settings\Exchange > Enable RPC encryption (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Enable RPC encryption (User)
Microsoft Outlook 2016\Security\Automatic Picture Download Settings > Include Internet in Safe Zones for Automatic Picture Download (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Include Internet in Safe Zones for Automatic Picture Download (User)
Microsoft Outlook 2016\Outlook Options\Preferences\Junk E-mail > Junk E-mail protection level (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Junk E-mail protection level (User)
Microsoft Outlook 2016\Security\Cryptography > Minimum encryption settings (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Minimum encryption settings (User)
Microsoft Outlook 2016\Security > Prevent users from customizing attachment security settings (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Prevent users from customizing attachment security settings (User)
Microsoft Outlook 2016\Security\Security Form Settings\Attachment Security > Remove file extensions blocked as Level 1 (User) (Deprecated) > Remove file extensions blocked as Level 2 (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Remove file extensions blocked as Level 1 (User) ⇒ Remove file extensions blocked as Level 2 (User)
Microsoft Outlook 2016\Security\Cryptography\Signature Status dialog box > Retrieving CRLs (Certificate Revocation Lists) (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Retrieving CRLs (Certificate Revocation Lists) (User)
Microsoft Outlook 2016\Security\Trust Center > Security setting for macros (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Security setting for macros (User)
Microsoft Outlook 2016\Security\Security Form Settings\Custom Form Security > Set Outlook object model custom actions execution prompt (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Set Outlook object model custom actions execution prompt (User)
Microsoft Outlook 2016\Security\Cryptography > Signature Warning (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Signature Warning (User)
Microsoft Outlook 2016\Outlook Options\Other\Advanced > Use Unicode format when dragging e-mail message to file system (User) (Deprecated)	Microsoft Outlook 2016\Security\Security Form Settings > Outlook Security Mode (User) ⇒ Use Unicode format when dragging e-mail message to file system (User)

If you have any questions or comments, reply to this post or reach out to @IntuneSuppTeam on Twitter.

Post updates:

05/03/2022: Updated text and table to reflect that the replacement settings have been released.

Updated Dec 19, 2023

Version 8.0

Support Tip

Intune_Support_Team

Microsoft

Joined October 11, 2018

View Profile

Intune Customer Success

Follow this blog board to get notified when there's new activity

Blog Post

Support tip: Several Office settings in settings catalog may need parent settings enabled

Share