Encryption type for password protected Office Open XML files

This policy setting enables you to specify an encryption type for Office Open XML files.

If you enable this policy setting, you can specify the type of encryption that Office applications will use to encrypt password-protected files in the Office Open XML file formats used by Excel 2007, PowerPoint 2007, and Word 2007. The chosen encryption type must have a corresponding cryptographic service provider (CSP) installed on the computer that encrypts the file. See the HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\ registry key for a list of CSPs installed on the local computer. Specify the encryption type to use by entering it in the provided text box in the following form:


For example, Microsoft Enhanced Cryptographic Provider v1.0,RC4,128

If you disable or do not configure this policy setting, the default CSP will be used. On computers that run Windows Vista, the default cryptographic service provider (CSP) is Microsoft Enhanced RSA and AES Cryptographic Provider, AES-128, 128-bit. On computers that run Windows XP, the default CSP is Microsoft Enhanced RSA and AES Cryptographic Provider (Prototype), AES-128, 128-bit.

Supported on: At least Windows Vista

Encryption type:

Registry PathSoftware\Policies\Microsoft\Office\12.0\Common\Security
Value NameOpenXMLEncryption
Value TypeREG_SZ
Default Value


Administrative Templates (Computers)

Administrative Templates (Users)