From MS SharePoint 2013 Security Technical Implementation Guide
Part of SRG-APP-000019
Associated with: CCI-000067
Remote access is any access to an organizational information system by a user (or an information system) communicating through an external, non-organization-controlled network (e.g., the Internet). Examples of remote access methods include dial-up, broadband, and wireless.
Review the SharePoint server configuration to ensure remote sessions for accessing security functions and security-relevant information are audited. Verify that SharePoint audit settings are configured at the site collection level in accordance with your system security plan. To verify audit settings at the site collection level for each site collection level subject to auditing per the SSP: Click Settings >> Site settings. If not at the root of your site collection, under Site Collection Administration, click Go to top level site settings. (Note: The Site Collection Administration section will not be available if you do not have the necessary permissions) On the Site Settings page, under Site Collection Administration, click Site collection audit settings. On the Configure Audit Settings page verify the events that are required to audit are selected, and then click OK. If nothing is selected, or the selected criteria do not match the SSP, this is a finding.
Configure the SharePoint server configuration to audit remote sessions for accessing security functions and security-relevant information. In Central Administration, click on Security. On the Security page, in the Information policy list, click "Configure information rights management". Select "Use the default RMS server specified in Active Directory", or identify a specific server by selecting "Use this RMS server:" and entering the server name. Configure information management policies in accordance with the system security plan requirements.
Lavender hyperlinks in small type off to the right (of CSS
class id
, if you view the page source) point to
globally unique URIs for each document and item. Copy the
link location and paste anywhere you need to talk
unambiguously about these things.
You can obtain data about documents and items in other
formats. Simply provide an HTTP header Accept:
text/turtle
or
Accept: application/rdf+xml
.
Powered by sagemincer