SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-223274 | SP13-00-000195 | SV-223274r961863_rule | CCI-000366 | medium |
| Description | ||||
| Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential viruses. | ||||
| STIG | Date | |||
| Microsoft SharePoint 2013 Security Technical Implementation Guide | 2024-12-10 | |||
Details
Check Text (C-223274r961863_chk)
Review the SharePoint server configuration to ensure SharePoint-specific malware (i.e. anti-virus) protection software is integrated and configured.
Log on to Central Administrator.
Navigate to Operations >> Security Configuration.
Select Anti-virus.
If any of the following boxes are unselected, this is a finding:
- Scan documents on upload.
- Scan documents on download.
- Attempt to clean infected documents.
Fix Text (F-24935r430880_fix)
Configure and integrate SharePoint-specific malware (i.e. anti-virus) protection software on the SharePoint server.
Install and configure anti-virus package.
Install a SharePoint Server 2010-specific antivirus package.
Log in to Central Administration.
Navigate to Operations >> Security Configuration.
Select Anti-virus.
Check the following boxes:
- Scan documents on upload.
- Scan documents on download.
- Attempt to clean infected documents.
Select "OK".