Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
When configuring Central Administration, the port number selected must comply with DoD Ports and Protocol Management (PPSM) program requirements.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-28170 | SHPT-00-000480 | SV-37769r1_rule | DCPP-1 | Medium |
| Description |
|---|
| During the installation of Microsoft SharePoint, the Central Administration Web site is established on a randomly-assigned TCP port by default. Allowing a randomly-assigned default may result in use of a port which violates DoD policy or conflicts with ports already in use. Use of certain well-known ports may also result in slow operational response or expose the application to known denial of service attacks. |
| STIG | Date |
|---|---|
| SharePoint 2010 Security Technical Implementation Guide (STIG) | 2011-12-20 |
Details
| Check Text ( C-36997r1_chk ) |
|---|
| 1. Open the SharePoint Management Shell (Start > All Programs > Microsoft SharePoint Products > SharePoint Management Shell). 2. Type the following command at the PowerShell prompt. Set -SPCentralAdministration -Port 3. Verify the port number is allowed by the DoD PPSM policy. 4. Mark as a finding if the port number is not allowed in accordance with DoD PPSM policy. |
| Fix Text (F-32261r1_fix) |
|---|
| 1. Open the SharePoint Management Shell (Start > All Programs > Microsoft SharePoint Products > SharePoint Management Shell). 2. Change the port number to a PPS-approved port which does not conflict with existing port usage using the following command: Set -SPCentralAdministration -Port 3. Press "Enter" to save. |