STIGQter: STIG Summary: Microsoft SharePoint 2013 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021: STIGQter: STIG Summary: Microsoft SharePoint 2013 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:SV-223265r612235_rule
V-223265
SRG-APP-000212
SP13-00-000150
CAT II
10
Configure the SharePoint Central Administration site to not be accessible from Extranet or Internet connections.
Block outside Central Administrator access.
Use an IIS IP address restrictions, firewall, or other filtering solutions to limit access to Central Administration site.
Review the SharePoint server configuration to ensure Central Administration site is not accessible from Extranet or Internet connections.
Check outside access to Central Administration.
On an administrative work station, open Central Administration and make note of the URL (i.e., http://sharepointserver:7040).
Try to open the Central Administration application on a regular user's workstation. Open a Web browser and type in the URL to Central Administration.
If the Central Administration can be opened, this is a finding.
V-223265
False
SP13-00-000150
Review the SharePoint server configuration to ensure Central Administration site is not accessible from Extranet or Internet connections.
Check outside access to Central Administration.
On an administrative work station, open Central Administration and make note of the URL (i.e., http://sharepointserver:7040).
Try to open the Central Administration application on a regular user's workstation. Open a Web browser and type in the URL to Central Administration.
If the Central Administration can be opened, this is a finding.
M
4096