SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-223274 | SP13-00-000195 | SV-223274r961863_rule | Medium |
| Description |
| Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential viruses. |
| STIG | Date |
| Microsoft SharePoint 2013 Security Technical Implementation Guide | 2024-12-10 |
Details
| Check Text (C-24947r430879_chk) |
| Review the SharePoint server configuration to ensure SharePoint-specific malware (i.e. anti-virus) protection software is integrated and configured. Log on to Central Administrator. Navigate to Operations >> Security Configuration. Select Anti-virus. If any of the following boxes are unselected, this is a finding: - Scan documents on upload. - Scan documents on download. - Attempt to clean infected documents. |
| Fix Text (F-24935r430880_fix) |
| Configure and integrate SharePoint-specific malware (i.e. anti-virus) protection software on the SharePoint server. Install and configure anti-virus package. Install a SharePoint Server 2010-specific antivirus package. Log in to Central Administration. Navigate to Operations >> Security Configuration. Select Anti-virus. Check the following boxes: - Scan documents on upload. - Scan documents on download. - Attempt to clean infected documents. Select "OK". |