SHPT-00-000315 - SharePoint must allow designated organizational personnel to select which auditable events are to be audited by specific components of the system.


Without auditing enabled, individual system accesses cannot be tracked and malicious activity cannot be detected and traced back to an individual account.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.


Ensure the auditing information management policy is configured to be available.
1. In SharePoint Central Administration, click Security.
2. On the Security page, in the Information policy list, click Configure Information Management Policy.
3. On the Information Management Policy Configuration page, select Auditing.
4. Select the option Available for use in new site and list policies.
5. Click Save.

See Also

Item Details


References: 800-53|AU-12b., CAT|II, CCI|CCI-000171, Rule-ID|SV-37767r2_rule, STIG-ID|SHPT-00-000315, Vuln-ID|V-28114

Plugin: Windows

Control ID: 8d097c0ac9fceb6345fc4876db2d91f83f710425f0f4cb3435d2d8feb06dc10f