![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 60%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKD%3C/text%3E%3C/svg%3E)
Microsoft Security | Active Directory Federation Services
Federated identity management using Active Directory Federation Services
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 39%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETD%3C/text%3E%3C/svg%3E)
Hello @Kong, Deyong [EMR/FCTL/ISV/CHNG]!
The Excel warning you’re seeing is Microsoft’s new security model for macros. Since 2022, Office blocks macros in files that come from the internet or untrusted sources by default. That’s why when you download a report from SAP (via GRR3 → OFL → SP900 → PL Trend_V3), Excel refuses to run the embedded macros and shows the “file origin is untrusted” message.
Depending on your IT/security policy, here are the options that you can choose to resolve this:
Unblock the file manually
- Right‑click the downloaded Excel file → Properties
- At the bottom, check Unblock → Apply → OK
- Reopen the file, and macros should now be enabled.
Move the file into a Trusted Location
- In Excel: File → Options → Trust Center → Trust Center Settings → Trusted Locations
- Add a folder (e.g., C:\SAPReports)
- Save all SAP exports there. Files in trusted folders bypass the block.
Digitally sign the macro (advanced / IT-controlled)
- If your company distributes macros, IT can sign them with a trusted certificate.
- Signed macros run without being blocked.
Group Policy / Admin setting (enterprise-wide)
- IT can configure Office policies to allow SAP export macros.
- This is the cleanest solution if many users face the same issue.
Since you’re working in enterprise deployment and automation, the Trusted Location approach is usually the most reproducible and policy compliant. Please note that don't just disable all macro security as this will exposes you to real risk. For best practice, you can use Trusted Locations for SAP exports or ask IT to whitelist SAP-generated files.
I hope this helps! Let me know if you have any questions or stuck anywhere!