STIGQter: STIG Summary: Microsoft SharePoint 2013 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021: STIGQter: STIG Summary: Microsoft SharePoint 2013 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:SV-223268r612235_rule
V-223268
SRG-APP-000516
SP13-00-000165
CAT II
10
Configure the SharePoint farm service account (database access account) with minimum privileges on the SQL server.
Configure the account on each SQL server in the farm.
- Launch the SQL Server Management Console and navigate to Security >> Logins.
- Select the SharePoint farm service account.
- Click on Server Roles.
- Ensure only public, dbcreator, and securityadmin roles are checked.
- Remove checks from all other roles.
Review the SharePoint server configuration to ensure the farm service account (database access account) is configured with minimum privileges on the SQL server.
- Launch the SQL Server Management Console and navigate to Security >> Logins.
- Select the SharePoint farm service account.
- Click on "Server Roles" and verify only public, dbcreator, and securityadmin are checked.
- Click on "User Mapping" and verify that the farm account is a member of the public and db_owner role on each SharePoint database.
Otherwise, this is a finding.
V-223268
False
SP13-00-000165
Review the SharePoint server configuration to ensure the farm service account (database access account) is configured with minimum privileges on the SQL server.
- Launch the SQL Server Management Console and navigate to Security >> Logins.
- Select the SharePoint farm service account.
- Click on "Server Roles" and verify only public, dbcreator, and securityadmin are checked.
- Click on "User Mapping" and verify that the farm account is a member of the public and db_owner role on each SharePoint database.
Otherwise, this is a finding.
M
4096