Resolving Excel Macro Issues Caused by Microsoft Security Baselines

Microsoft Security Baselines provide a set of recommended configuration settings for securing your environment. However, sometimes these settings can interfere with normal operations, causing unexpected issues. Recently, we encountered a problem where enabling the security baseline caused Excel macros to stop working. Here’s a detailed account of the issue and how we resolved it.

The Problem After turning on the Microsoft Security Baseline for Windows 10 and later, macros in Excel stopped functioning. Typically, this problem can be resolved by creating a trusted location for the file share. However, in our case, we were using DFS (Distributed File System) namespaces, and adding the file path to the DFS namespace as a trusted location did not solve the issue. Even though File Explorer recognized the DFS namespace as a trusted location, Excel continued to block the macros.

Here’s what normally fixes it when using a normal file share. Create a configuration profile to add the trusted location:

The Initial Attempt Our initial troubleshooting steps included the following:

Ensuring that the file path for the DFS namespace was correctly added as a trusted location.
Verifying that File Explorer acknowledged the DFS path as trusted.

Despite these efforts, Excel still blocked the macros, indicating that the issue lay deeper within the configuration settings. To resolve the issue, we decided to create a configuration profile using administrative templates, which mirrors group policy settings. Here’s the step-by-step solution:

Create a Configuration Profile: We created a configuration profile in Microsoft Endpoint Manager using administrative templates.
Set Intranet Zone to Low Security:
o We configured the intranet zone template to have low security settings.
Add DFS Namespace to Trusted Sites:
o Instead of adding the DFS namespace as a trusted location, we added it as a trusted site.
o The format used was file://. For example, file://corp.site.com instead of \corp.site.com for the DFS location.
Include All Local Intranet Sites:
o We enabled the setting to include all local intranet sites not listed in other zones. This ensures that any other network resources are also trusted.
Apply the Settings:
o We applied these settings, ensuring that the DFS namespace location was recognized as a trusted site.

This approach effectively resolved the issue. Excel macros started functioning correctly once the DFS namespace was added as a trusted intranet site instead of just a trusted location. Below are some screenshots:

Relion - Managed IT Services & Business IT Support

5.0

Based on 67 reviews

review us on

Zeph aniah

18:24 11 Dec 24

He was very patient on addressing the issues I had with my old laptop.

18:50 10 Dec 24

16:18 19 Nov 24

00:23 14 Nov 24

23:41 30 Oct 24

15:11 29 Oct 24

great prompt accommodation, solved the problem right away

Yvonne Tejeda

21:57 21 Oct 24

Keenan was very helpful, knowledgeable and patient! He helped me resolve my issue promptly and efficiently.

David K.

19:14 17 Oct 24

Relion is a great It service if you have a company that needs IT support. I had Kat assisting me today with my work laptop, and she was fast and very professional. I highly recommend Relion if you or your company is looking for great IT support.

Shwetha Sunil

20:59 16 Sep 24

eren fernandez

18:58 10 Sep 24

Excellent Customer Service.

Jennifer Johnston

18:46 10 Sep 24

Michelle McGinnis

20:04 22 Aug 24

Brian was awesome, as usual. Highly recommended!!

Grace Attwater

21:25 20 Aug 24

We’ve been with Relion for quite a few years. They are professional, knowledgeable and prompt. We highly recommend using Relion for all your IT needs.

Wayne Lee (LEWAYHUN)

20:24 21 Jun 24

Relion & their team has always been great about responding quickly, even on wkends.Friendly & knowledgeable, we frequently invite them to our Co events as they are so integrated into our Co as experts in their field.

Todd C

18:56 07 May 24

Hi all, This IT support company knows what they are doing.I was in IT support for many years, and I can tell you these guys know their stuff.They are friendly and never make you feel bad for your level of knowledge.Manny was able to get me set up and going.We had lots of challenges as my PC was not set up right by others. He found the right resources to get me all fixed in 1 Call.I will call back and ask for Manny again.Have a great day all.Rember to update your OS and Anti-Virus programs each week

Katherine Twomey

21:43 01 May 24

Relion is an amazing IT company! They are super quick to answer both phone and email inquiries, they are kind, courteous, and knowledgeable! All of the techs are amazing, but I have dealt with Zach the most, and he is a pleasure to do business with!

Jacklyn Walters

22:29 19 Apr 24

The Relion team is the best! No matter the problem, big or small or as simple as restarting your computer, they will help you solve it. I've worked directly with each member of the team and every one of them is a delight. They are patient, kind, and really know their stuff. After nearly three years working with them, I highly recommend Relion for all of your IT needs.Update: Two months since leaving my initial review, I have worked with Manny countless times on everything from setting up new devices to adding employee access to our company drives. He is always a pleasure to work with and solves any problems quickly and efficiently. Thanks Manny! (And the entire Relion team!)

David Walker

22:26 08 Feb 24

Relion has been amazing! They have saved us from protential problems, helped us convert our entire network, phone lines, and mobile apps flawlessly. I have worked with them for at least 10 years now and would not have grown our our company with out them. Relion has helped us grow from 15 to 700 plus people.They have reduce our stress and allowed us to understand and grow with the constant changes in IT environment. They are one of our best partners in our business! Their entire team cares and are easy to work with.Dave WalkerWalker Brothers Machinery moving.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Resolving Excel Macro Issues Caused by Microsoft Security Baselines

Categories

BUSINESS

STARTING AT $1,000 PER MONTH

NON-PROFIT

STARTING AT $750 PER MONTH

New client consultation

Services

Resources

Client Tools

Contact Information