SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured.

An XCCDF Rule

Description

Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential viruses.

ID: SV-223274r961863_rule
Version: SP13-00-000195
Severity: Medium
References: CCI-000366 CCI-001167
Updated: about 2 months ago

Remediation Templates

Configure and integrate SharePoint-specific malware (i.e. anti-virus) protection software on the SharePoint server.

Install and configure anti-virus package.

Install a SharePoint Server 2010-specific antivirus package. 
Log in to Central Administration.

Navigate to Operations >> Security Configuration.

Select Anti-virus.

Check the following boxes:
- Scan documents on upload.
- Scan documents on download.
- Attempt to clean infected documents.

Select "OK".

SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured.

Description

Remediation Templates

A Manual Procedure