SP13-00-000195 - SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured - 'Attempt to Clean Infected Documents is enabled'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential viruses.

Solution

Configure and integrate SharePoint-specific malware (i.e. anti-virus) protection software on the SharePoint server.

Install and configure anti-virus package.

Install a SharePoint Server 2010-specific antivirus package.

Log in to Central Administration.

Navigate to Operations >> Security Configuration.

Select Anti-virus.

Check the following boxes:
- Scan documents on upload.
- Scan documents on download.
- Attempt to clean infected documents.

Select 'OK'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_SharePoint_2013_V1R8_STIG.zip

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-3, CAT|II, CCI|CCI-001167, Rule-ID|SV-74441r1_rule, STIG-ID|SP13-00-000195, Vuln-ID|V-60011

Plugin: Windows

Control ID: 2f52980a3719caf28a9b6df74799967ff9602aed104078d8164d8383ddda8795