STIGQter: STIG Summary: Microsoft SharePoint 2013 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

SharePoint must reject or delay, as defined by the organization, network traffic generated above configurable traffic volume thresholds.

DISA Rule

SV-223248r612235_rule

Vulnerability Number

V-223248

Group Title

SRG-APP-000516

Rule Version

SP13-00-000060

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure SharePoint to reject or delay, as defined by the organization or site SSP, network traffic generated above configurable traffic volume thresholds.

Log on to the server.

Click Start.

Type Internet Information Services Manager in the Search Bar, click Enter.

Determine which IIS Sites are subject to user traffic. This is generally the IIS site hosting the Content Web Application.

For each site IIS site subject to user traffic, select the site.

Click Advanced Settings.

Expand Connection Limits.

Ensure the following settings possess a value:
-Connection Time-Out
-Maximum Bandwidth
-Maximum Concurrent Connections

Repeat steps for each site subject to user traffic.

Check Contents

Review the SharePoint server configuration to ensure network traffic generated above configurable traffic volume thresholds, as defined by the organization or site SSP, is rejected or delayed.

Log on to the server.

Click Start.

Type Internet Information Services Manager in the Search Bar, click Enter.

Determine which IIS Sites are subject to user traffic. This is generally the IIS site hosting the Content Web Application.

For each site IIS site subject to user traffic, select the site.

Click Advanced Settings.

Expand Connection Limits.

Ensure the following settings possess a value:
-Connection Time-Out
-Maximum Bandwidth
-Maximum Concurrent Connections

Repeat steps for each site subject to user traffic.

Otherwise, this is a finding.

Vulnerability Number

V-223248

Documentable

False

Rule Version

SP13-00-000060

Severity Override Guidance

Review the SharePoint server configuration to ensure network traffic generated above configurable traffic volume thresholds, as defined by the organization or site SSP, is rejected or delayed.

Log on to the server.

Click Start.

Type Internet Information Services Manager in the Search Bar, click Enter.

Determine which IIS Sites are subject to user traffic. This is generally the IIS site hosting the Content Web Application.

For each site IIS site subject to user traffic, select the site.

Click Advanced Settings.

Expand Connection Limits.

Ensure the following settings possess a value:
-Connection Time-Out
-Maximum Bandwidth
-Maximum Concurrent Connections

Repeat steps for each site subject to user traffic.

Otherwise, this is a finding.

Check Content Reference

M

Target Key

4096

Comments