Microsoft SharePoint 2013 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SharePoint must use mechanisms for authentication to a cryptographic module that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance for such authentication.
Certain encryption types are no longer considered secure. This setting configures a minimum encryption type for SharePoint. Different versions of the Windows Server OS and versions of SharePoint wi...Rule High Severity -
The SharePoint farm service account (database access account) must be configured with minimum privileges on the SQL server.
Separation of duties is a prevalent Information Technology control implemented at different layers of the information system including the operating system and in applications. It serves to elimina...Rule Medium Severity -
When configuring SharePoint Central Administration, the port number selected must comply with DoD Ports and Protocol Management (PPSM) program requirements.
During the installation of Microsoft SharePoint, the Central Administration Web site is established on a randomly-assigned TCP port by default. Allowing a randomly-assigned default may result in us...Rule Medium Severity -
The SharePoint farm service account (database access account) must be configured with the minimum privileges for the local server.
Separation of duties is a prevalent Information Technology control implemented at different layers of the information system including the operating system and in applications. It serves to elimina...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.