A secondary SharePoint site collection administrator must be defined when creating a new site collection.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-223272 | SP13-00-000185 | SV-223272r961863_rule | CCI-000366 | low |
| Description | ||||
| If a site reaches its maximum size, users will be denied access until an administrator fixes the problem. Having a secondary administrator reduces the risk of having a Denial-of-Service on a site. If the site reaches its maximum size, the secondary administrator can fix the problem if the primary administrator is not available. In some situations, having a secondary site administrator could be inappropriate for reasons of control or confidentiality. | ||||
| STIG | Date | |||
| Microsoft SharePoint 2013 Security Technical Implementation Guide | 2024-12-10 | |||
Details
Check Text (C-223272r961863_chk)
Review the SharePoint server to ensure a secondary site collection administrator is defined when creating a new site collection.
Log on to SharePoint Central Administration as a member of the Farm Administration Group.
Click on "Application Management".
Select "Site Collections" >> Change Site Collections Administrator.
For each Site Collections, review Secondary Site Collection Administrator.
If Secondary Site Collection Administrator is not defined, this is a finding.
Fix Text (F-24933r430874_fix)
Configure a secondary SharePoint site collection administrator when creating a new site collection.
Log on to SharePoint Central Administration as a member of the Farm Administration Group.
Click on "Application Management".
Select "Site Collections" >> Change Site Collections Administrator.
For each site, define a Secondary Site Collection Administrator.
Select "OK".