Policy

Do not allow expired certificates when validating signatures

This policy setting allows you to configure Office 2016 applications to accept expired digital certificates during verification of digital signatures. If you enable or do not configure this policy setting, Office 2016 applications display digital signatures created with expired certificates as invalid. If you disable this policy setting, Office 2016 applications treat expired certificates as valid.

Policy
Pack Microsoft Office
Category Microsoft Office 2016 / Security Settings / Digital Signatures
Policy ID 5cc65060026e
Internal name L_DoNotAllowExpiredCertificatesWhenValidatingSignatures

Registry

Copy registry mappings

HKCU\software\policies\microsoft\office\16.0\common\signatures\ignoreexpiredcert (enabled) = 0
HKCU\software\policies\microsoft\office\16.0\common\signatures\ignoreexpiredcert (disabled) = 1

Policy notes

This policy setting allows you to configure Office 2016 applications to accept expired digital certificates during verification of digital signatures. If you enable or do not configure this policy setting, Office 2016 applications display digital signatures created with expired certificates as invalid. If you disable this policy setting, Office 2016 applications treat expired certificates as valid.

Related policies

Check the XAdES portions of a digital signatureConfigure invalid DSA public key sizeConfigure invalid hashing algorithmConfigure invalid RSA public key sizeConfigure legacy DSA public key sizeConfigure legacy hashing algorithmConfigure legacy RSA public key size