SharePoint must implement an information system isolation boundary that minimizes the number of nonsecurity functions included within the boundary containing security functions.

An XCCDF Rule

Description

<VulnDiscussion>The information system isolates security functions from nonsecurity functions by means of an isolation boundary (implemented via partitions and domains) controlling access to and protecting the integrity of, the hardware, software, and firmware that perform those security functions. The information system maintains a separate execution domain (e.g., address space) for each executing process.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-223260r612235_rule
Severity: High
References: CCI-001184
Updated: about 1 year ago

Configure the SharePoint server to implement an information system isolation boundary that minimizes the number of nonsecurity functions included within the boundary containing security functions.

Log on to the server that hosts the farm's Central Administration website.

Open IIS Manager.
Expand "Sites" tree view and right-click the web application named "SharePoint Central Administration".

Select "Edit Bindings ...".

Select the site binding record and click "Edit".

From the "IP Address" dropdown list, select an OOB IP address.

Click "Ok".

*NOTE: If the Central Administration site has multiple site bindings, steps will need to be repeated for each site binding.

SharePoint must implement an information system isolation boundary that minimizes the number of nonsecurity functions included within the boundary containing security functions.

Description

Remediation - Manual Procedure