Oct 17
SharePoint Security Considerations

SharePoint Security Considerations

Better define data governance
  • Data Handling Training.
  • SharePoint security training and best practices.
  • Security oversight, need a web friendly tool to help facilitate access (RBA, Vended, etc…).
  • Add a Farm-wide requirement to tag data (data classification) at content level or per data object.
Employ 3rd party software soolutions such as ControlPoint or AvePoint.
Refine search rules and scope.
Block web crawlers.
 
Farm level Audit
Use the ULS logs and IIS logs effectively.
Usage and Trace Logs located at - \Program Files\Common Files\Microsoft Shared\Web Server Extensions\"version"\Logs "per WFE server"
 
Common Security Mistakes - http://zoom.it/Rbwh#full
  • End Users employ Anonymous access to defeat collaborative barriers which leads to overly broad access.
  • Encryption at rest for DB, pitfalls associated with this method such as DB recovery.
  • Security account isolation, don’t run any account with server or application admin access.
  • EndPoint reverse proxy security.
  • Not patching.
  • Workspace sync pitfalls.
  • Virus detection.
  • Web application zones for extranets.
  • User Firewalls and reduce your overall footprint.
  • Secure store.
  • Enable SSL for all web traffic.
  • Enable IPSEC for all server to server communications.
 
Site Collection Audit
Define the SA Role responsibilities.
Use an admin account rather than everyday account.
Data handling and required steward training such as enabling audit and security management.
Information Policy.
  • To ensure that an information policy is applied to all documents of a certain type within a site collection, consider creating the policy at the site collection level and then later apply the policy to content types. These are referred to as site collection policies. To learn more, see related topics in the See Also section.
Run Compliance Details report on each document.
Record Declaration.
  • Documents or items declared as records can have additional restrictions or retention policies enforced on them compared to non-records. Use this page to determine who can declare records and what restrictions to put in place. You can also use the information management settings on a location or a content type to define separate policies for records and non-records.

Enable document library versioning.

 
Sizing and Growth
Retention and archive requirements, where to store the files?
Enabling auditing can increase data storage significantly at a rate of approximately 64 KB per page hit. Assuming a daily 1,000 page hits the growth in size would be 1,000 * 64 KB = 62.5 MB/day. For a pge without content the DB can grow over 1.8 GB per month.
 
Site Collection Audit Settings
  • Documents and Items.
    • Specify the events to audit.
      • Opening or downloading documents, viewing items in lists, or viewing item properties.
      • Editing items.
      • Checking out or checking in items.
      • Moving or copying items to another location in the site.
      • Deleting or restoring items.
  • Lists, Libraries, and Sites.
    • Specify the events to audit.
      • Editing content types and columns.
      • Searching site content.
      • Editing users and permissions. 
Site Collection Content Audit reports
  • Content Activity Reports
    • Content modifications - This report shows all events that modified content in this site.
      • Content type and list modifications - This report shows all events that modified content types and lists in this site.
      • Content viewing - This report shows all events where a user viewed content in this site.
      • Deletion - This report shows all events that caused content in this site to be deleted or restored from the Recycle Bin.
    • Custom Reports.
      • Run a custom report - Manually specify the filters for your Audit Report.
  • Information Management Policy Reports
    • Expiration and Disposition - This report shows all events related to the expiration and disposition of content in this site.
    • Policy modifications - This report shows all events related to the creation and use of information management policies on content in this site.
  • Security And Site Settings Reports
    • Auditing settings - This report shows all events that change the auditing settings of Microsoft SharePoint Foundation.
    • Security settings - This report shows all events that change the security configuration of Microsoft SharePoint Foundation.

Comments

There are no comments for this post.

 ‭(Hidden)‬ Blog Tools