DISA STIG SharePoint 2010 v1r8

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG SharePoint 2010 v1r8

Updated: 5/21/2019

Authority: DISA STIG

Plugin: Windows

Revision: 1.3

Estimated Item Count: 49

File Details

Filename: DISA_STIG_SharePoint_2010_v1r8.audit

Size: 142 kB

MD5: 45cbb805cb59ad5de18005f35c42b280

SHA256: a92cc5190a7af1e3fce034df2b899df40d105cfb4e9e0103f56e9f5ccf0ba3a6

Audit Items

Description	Categories
SHPT-00-000007 - SharePoint must support the requirement to initiate a session lock	ACCESS CONTROL
SHPT-00-000009 - SharePoint information management policies must support the use of organizationally defined security attributes.
SHPT-00-000010 - SharePoint must maintain security attributes to stored information - 'Custom content types - Document Library'	SYSTEM AND COMMUNICATIONS PROTECTION
SHPT-00-000010 - SharePoint must maintain security attributes to stored information - 'Custom content types have been defined for Site'	SYSTEM AND COMMUNICATIONS PROTECTION
SHPT-00-000040 - SharePoint must allow authorized users to associate security attributes with information.
SHPT-00-000100 - SharePoint must enforce dual authorization for organizationally defined privileged commands.
SHPT-00-000127 - The Automatically delete the site collection if use is not confirmed property must not be enabled for web applications.	CONFIGURATION MANAGEMENT
SHPT-00-000130 - The SharePoint application server upon which Central Administration is installed must not be installed in the DMZ.
SHPT-00-000165 - SharePoint must enable IRM to bind attributes to information	SYSTEM AND COMMUNICATIONS PROTECTION
SHPT-00-000190 - SharePoint must enforce requirements to implement separation of duties through assigned information access authorizations.
SHPT-00-000191 - SharePoint farm service account (Database Access account) must be configured with minimum privileges in Active Directory	ACCESS CONTROL
SHPT-00-000193 - The SharePoint setup user domain account must be configured with the minimum privileges in Active Directory.	ACCESS CONTROL
SHPT-00-000195 - The SharePoint setup user domain account must be configured with the minimum privileges for the local server.	ACCESS CONTROL
SHPT-00-000197 - A secondary site collection administrator must be defined when creating a new site collection.	IDENTIFICATION AND AUTHENTICATION
SHPT-00-000199 - SharePoint service accounts must be configured for separation of duties.	ACCESS CONTROL
SHPT-00-000210 - Timer job retries for automatic password change on Managed Accounts must meet DoD password retry policy.	ACCESS CONTROL
SHPT-00-000235 - SharePoint clients must be configured to display a system use notification message
SHPT-00-000240 - SharePoint must retain the notification message or banner on the screen
SHPT-00-000245 - SharePoint must be configured to display the banner, when appropriate, before granting further access.
SHPT-00-000315 - SharePoint must allow personnel to select auditable events
SHPT-00-000405 - SharePoint must integrate audit review, analysis, and reporting processes	AUDIT AND ACCOUNTABILITY
SHPT-00-000430 - SharePoint must protect audit information from unauthorized access to the usage and health logs	AUDIT AND ACCOUNTABILITY
SHPT-00-000431 - SharePoint must protect audit information from unauthorized access to the trace data log files	AUDIT AND ACCOUNTABILITY
SHPT-00-000435 - SharePoint must protect audit information from unauthorized modification of usage and health data collection logs	AUDIT AND ACCOUNTABILITY
SHPT-00-000436 - SharePoint must protect audit information from unauthorized modification to trace data logs.	AUDIT AND ACCOUNTABILITY
SHPT-00-000440 - SharePoint must protect audit information from unauthorized deletion of usage and health logs	AUDIT AND ACCOUNTABILITY
SHPT-00-000441 - SharePoint must protect audit information from unauthorized deletion of trace log files	AUDIT AND ACCOUNTABILITY
SHPT-00-000445 - SharePoint must protect audit tools from unauthorized access - 'Verify Site Collection Administrators'	AUDIT AND ACCOUNTABILITY
SHPT-00-000445 - SharePoint must protect audit tools from unauthorized access - 'Verify Users and Groups with Full Control'	AUDIT AND ACCOUNTABILITY
SHPT-00-000465 - SharePoint must support that privileged access is further defined between audit-related privileges and other privileges.	AUDIT AND ACCOUNTABILITY
SHPT-00-000475 - SharePoint must support the organizational requirement to provide only essential capabilities.	CONFIGURATION MANAGEMENT
SHPT-00-000480 - The port number selected must comply with DoD Ports and Protocol Management program requirements	CONFIGURATION MANAGEMENT
SHPT-00-000495 - Backup of critical systems must be performed when identified as required by the owning organization.
SHPT-00-000530 - The Central Administration Web Application must use Kerberos as the authentication provider.	IDENTIFICATION AND AUTHENTICATION
SHPT-00-000531 - SharePoint sites must not use NTLM.
SHPT-00-000600 - SharePoint managed service accounts must be set to enable automatic password change.	IDENTIFICATION AND AUTHENTICATION
SHPT-00-000640 - Applications must support organizational requirements to employ cryptographic mechanisms to protect information in storage.
SHPT-00-000645 - SharePoint must terminate the network connection after a defined time period - 'FormDigestSettings.Enabled = True'	ACCESS CONTROL
SHPT-00-000682 - The Online Web Part Gallery must be configured for limited access.	ACCESS CONTROL
SHPT-00-000683 - SharePoint-specific malware software must be integrated and configured - 'Attempt to Clean Infected Documents is enabled'	SYSTEM AND INFORMATION INTEGRITY
SHPT-00-000683 - SharePoint-specific malware software must be integrated and configured - 'Scan Documents on Download is enabled'	SYSTEM AND INFORMATION INTEGRITY
SHPT-00-000683 - SharePoint-specific malware software must be integrated and configured - 'Scan Documents on Upload is enabled'	SYSTEM AND INFORMATION INTEGRITY
SHPT-00-000690 - The Central Administration site must not be accessible from Extranet or Internet connections.	SYSTEM AND COMMUNICATIONS PROTECTION
SHPT-00-000692 - Access to Central Administration site must be limited to authorized users and groups.	ACCESS CONTROL
SHPT-00-000760 - SharePoint must implement security function modules - 'Central Administration is a separate App Pool'	SYSTEM AND COMMUNICATIONS PROTECTION
SHPT-00-000760 - SharePoint must implement security function modules - 'Internet & Extranet assigned to diff App Pools'	SYSTEM AND COMMUNICATIONS PROTECTION
SHPT-00-000760 - SharePoint must implement security function modules - 'No Applications assigned to Default App Pool'	SYSTEM AND COMMUNICATIONS PROTECTION
SHPT-00-000805 - The organization must employ cryptography to prevent unauthorized disclosure of information during transmission	SYSTEM AND COMMUNICATIONS PROTECTION
SHPT-00-000810 - SharePoint must identify potentially security-relevant error conditions.	AUDIT AND ACCOUNTABILITY

Detections

Analytics

DISA STIG SharePoint 2010 v1r8

Warning! Audit Deprecated

Audit Details

File Details

Audit Items