STIGQter STIGQter: STIG Summary: Microsoft SharePoint 2013 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

SharePoint must enforce approved authorizations for controlling the flow of information between interconnected systems in accordance with applicable policy.

DISA Rule

SV-223243r612235_rule

Vulnerability Number

V-223243

Group Title

SRG-APP-000039

Rule Version

SP13-00-000030

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

Configure the SharePoint server to enforce approved authorizations for controlling the flow of information between interconnected systems in accordance with applicable policy.

Remove the application server from the DMZ.

Check Contents

Review the SharePoint server configuration to ensure approved authorizations for controlling the flow of information between interconnected systems in accordance with applicable policy are enforced.

Inspect the logical location of the server farm web front end servers on a network diagram.

Verify the Central Administration site is not installed on a server located in a DMZ or other publicly accessible segment of the network.

If Central Administrator is installed on a publicly facing SharePoint server, this is a finding.

Vulnerability Number

V-223243

Documentable

False

Rule Version

SP13-00-000030

Severity Override Guidance

Review the SharePoint server configuration to ensure approved authorizations for controlling the flow of information between interconnected systems in accordance with applicable policy are enforced.

Inspect the logical location of the server farm web front end servers on a network diagram.

Verify the Central Administration site is not installed on a server located in a DMZ or other publicly accessible segment of the network.

If Central Administrator is installed on a publicly facing SharePoint server, this is a finding.

Check Content Reference

M

Target Key

4096

Comments