STIGQter: STIG Summary: Microsoft SharePoint 2013 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

When configuring SharePoint Central Administration, the port number selected must comply with DoD Ports and Protocol Management (PPSM) program requirements.

DISA Rule

SV-223273r612235_rule

Vulnerability Number

V-223273

Group Title

SRG-APP-000142

Rule Version

SP13-00-000190

Severity

CAT II

CCI(s)

• CCI-000382 - The organization configures the information system to prohibit or restrict the use of organization-defined functions, ports, protocols, and/or services.

Weight

10

Fix Recommendation

Configure the SharePoint Central Administration port number selected to comply with DoD Ports and Protocol Management (PPSM) program requirements.

Open the SharePoint Management Shell (Start >> All Programs >> Microsoft SharePoint Products >> SharePoint Management Shell).

Change the port number to a PPS-approved port that does not conflict with existing port usage using the following command:
Set -SPCentralAdministration -Port <PortNumber>

Press "Enter" to save.

Check Contents

Review the SharePoint server Central Administration configuration to ensure the port number selected complies with DoD Ports and Protocol Management (PPSM) program requirements.

Open the SharePoint Management Shell (Start >> All Programs >> Microsoft SharePoint Products >> SharePoint Management Shell).

Type the following command at the PowerShell prompt:
Get-SPWebApplication -IncludeCentralAdministration

Find the entry for the Central Administration web application and verify the port listed in the URL column is allowed by the DoD PPSM policy.

If the port number is not allowed in accordance with DoD PPSM policy, this is a finding.

Vulnerability Number

V-223273

Documentable

False

Rule Version

SP13-00-000190

Severity Override Guidance

Review the SharePoint server Central Administration configuration to ensure the port number selected complies with DoD Ports and Protocol Management (PPSM) program requirements.

Open the SharePoint Management Shell (Start >> All Programs >> Microsoft SharePoint Products >> SharePoint Management Shell).

Type the following command at the PowerShell prompt:
Get-SPWebApplication -IncludeCentralAdministration

Find the entry for the Central Administration web application and verify the port listed in the URL column is allowed by the DoD PPSM policy.

If the port number is not allowed in accordance with DoD PPSM policy, this is a finding.

Check Content Reference

M

Target Key

4096

Comments