Configure trusted add-ins

This policy setting can be used to specify a list of trusted add-ins that can be run without being restricted by the security measures in Outlook.

If you enable this policy setting, a list of trusted add-ins and hashes is made available that you can modify by adding and removing entries. The list is empty by default. To create a new entry, enter a DLL file name in the "Value Name" column and the hash result in the "Value" column.

If you disable or do not configure this policy setting, the list of trusted add-ins is empty and unused, so the recommended EC and SSLF settings do not create any usability issues. However, users who rely on add-ins that access the Outlook object model might be repeatedly prompted unless administrators enable this setting and add the add-ins to the list.

Note - You can also configure Exchange Security Form settings by enabling the "Outlook Security Mode" setting in User Configuration\Administrative Templates\Microsoft Outlook 2010\Security\Security Form Settings\Microsoft Outlook 2010 Security and selecting "Use Outlook Security Group Policy" from the drop-down list.

For more information about the Object Model Guard, see Security Behavior of Outlook ( in the MSDN Outlook 2010 Developer Reference.

Supported on: At least Windows Vista
List of trusted add-ins and hashes

Registry Pathsoftware\policies\microsoft\office\14.0\outlook\security\trustedaddins
Value Name{number}
Value TypeREG_SZ
Default Value

Enter the DLL filename for Value Name and the hash result for Value


Administrative Templates (Users)