STIGQter STIGQter: STIG Summary: Microsoft SharePoint 2013 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured.

DISA Rule

SV-223274r612235_rule

Vulnerability Number

V-223274

Group Title

SRG-APP-000516

Rule Version

SP13-00-000195

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure and integrate SharePoint-specific malware (i.e. anti-virus) protection software on the SharePoint server.

Install and configure anti-virus package.

Install a SharePoint Server 2010-specific antivirus package.

Log in to Central Administration.

Navigate to Operations >> Security Configuration.

Select Anti-virus.

Check the following boxes:
- Scan documents on upload.
- Scan documents on download.
- Attempt to clean infected documents.

Select "OK".

Check Contents

Review the SharePoint server configuration to ensure SharePoint-specific malware (i.e. anti-virus) protection software is integrated and configured.

Log on to Central Administrator.

Navigate to Operations >> Security Configuration.

Select Anti-virus.

If any of the following boxes are unselected, this is a finding:
- Scan documents on upload.
- Scan documents on download.
- Attempt to clean infected documents.

Vulnerability Number

V-223274

Documentable

False

Rule Version

SP13-00-000195

Severity Override Guidance

Review the SharePoint server configuration to ensure SharePoint-specific malware (i.e. anti-virus) protection software is integrated and configured.

Log on to Central Administrator.

Navigate to Operations >> Security Configuration.

Select Anti-virus.

If any of the following boxes are unselected, this is a finding:
- Scan documents on upload.
- Scan documents on download.
- Attempt to clean infected documents.

Check Content Reference

M

Target Key

4096

Comments