OpenControls Logo

STIG Viewer

SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured.

Overview

Finding IDVersionRule IDIA ControlsSeverity
V-223274SP13-00-000195SV-223274r961863_ruleCCI-000366medium
Description
Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential viruses.
STIGDate
Microsoft SharePoint 2013 Security Technical Implementation Guide2024-12-10

Related Frameworks

4 paths across 3 frameworks
NIST 800-531 mapping
CM-6
1.00
  • DISA · 2 · disa_xccdf · related
  • DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1712 mappings
3.4.1
1.00
  • DISA · 2 · disa_xccdf · related
  • DISA · 2025-01-23 · disa_cci_list · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
3.4.2
1.00
  • DISA · 2 · disa_xccdf · related
  • DISA · 2025-01-23 · disa_cci_list · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-000366
1.00
  • DISA · 2 · disa_xccdf · related

Details

Check Text (C-223274r961863_chk)

Review the SharePoint server configuration to ensure SharePoint-specific malware (i.e. anti-virus) protection software is integrated and configured. Log on to Central Administrator. Navigate to Operations >> Security Configuration. Select Anti-virus. If any of the following boxes are unselected, this is a finding: - Scan documents on upload. - Scan documents on download. - Attempt to clean infected documents.

Fix Text (F-24935r430880_fix)

Configure and integrate SharePoint-specific malware (i.e. anti-virus) protection software on the SharePoint server. Install and configure anti-virus package. Install a SharePoint Server 2010-specific antivirus package. Log in to Central Administration. Navigate to Operations >> Security Configuration. Select Anti-virus. Check the following boxes: - Scan documents on upload. - Scan documents on download. - Attempt to clean infected documents. Select "OK".