3.5 Ensure that SharePoint specific malware (i.e. anti-virus) protection software is integrated and configured - Scan on upload

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured.
Rationale:
Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential malware.

Solution

1. Log on to the Central Administration website.
2. Navigate to Operations > Security Configuration.
3. Select Anti-virus.
4. SharePoint specific malware (i.e. anti-virus) protection software must be integrated and configured for each of the following:
o Scan documents on upload.
o Scan documents on download.
o Attempt to clean infected documents.

See Also

https://www.cisecurity.org/benchmark/microsoft_sharepoint/

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-3, CSCv6|8.1

Plugin: Windows

Control ID: e225bcce21bf887fdae26f20e74cfa3d7df7caed7d85e5f185d5714b25ae615f