Sample-Reports/IndividualReports/SharePointReport.json
|
[
{ "ReportSummary": { "Manual": 0, "AnnotatedFailedPolicies": { }, "Failures": 0, "Warnings": 0, "Errors": 0, "Passes": 8, "Omits": 0, "Date": "05/04/2026 17:15:48 Coordinated Universal Time", "IncorrectResults": 0 }, "Results": [ { "GroupName": "External Sharing", "GroupNumber": "1", "GroupReferenceURL": "https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#1-external-sharing", "Controls": [ { "Control ID": "MS.SHAREPOINT.1.1v1", "Requirement": "External sharing for SharePoint SHALL be limited to \"Existing guests\" or \"Only people in your organization\".<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "Requirement met", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "Requirement met", "Comments": [ ], "ResolutionDate": null }, { "Control ID": "MS.SHAREPOINT.1.2v1", "Requirement": "External sharing for OneDrive SHALL be limited to \"Existing guests\" or \"Only people in your organization\".<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "Requirement met", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "Requirement met", "Comments": [ ], "ResolutionDate": null }, { "Control ID": "MS.SHAREPOINT.1.3v1", "Requirement": "External sharing SHALL be restricted to approved external domains and/or users in approved security groups per interagency collaboration needs.<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "This policy is only applicable if the external sharing slider in the SharePoint admin center is not set to Only People In Your Organization. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#mssharepoint13v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for more info", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "This policy is only applicable if the external sharing slider in the SharePoint admin center is not set to Only People In Your Organization. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#mssharepoint13v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for more info", "Comments": [ ], "ResolutionDate": null } ] }, { "GroupName": "File and Folder Default Sharing Settings", "GroupNumber": "2", "GroupReferenceURL": "https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#2-file-and-folder-default-sharing-settings", "Controls": [ { "Control ID": "MS.SHAREPOINT.2.1v1", "Requirement": "File and folder default sharing scope SHALL be set to \"Specific people (only the people the user specifies)\".<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "Requirement met", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "Requirement met", "Comments": [ ], "ResolutionDate": null }, { "Control ID": "MS.SHAREPOINT.2.2v1", "Requirement": "File and folder default sharing permissions SHALL be set to view only.<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "Requirement met", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "Requirement met", "Comments": [ ], "ResolutionDate": null } ] }, { "GroupName": "Securing Anyone Links and Verification Code Users", "GroupNumber": "3", "GroupReferenceURL": "https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#3-securing-anyone-links-and-verification-code-users", "Controls": [ { "Control ID": "MS.SHAREPOINT.3.1v1", "Requirement": "Expiration days for Anyone links SHALL be set to 30 days or less.<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "This policy is only applicable if the external sharing slider in the SharePoint admin center is set to Anyone. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#mssharepoint31v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for more info", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "This policy is only applicable if the external sharing slider in the SharePoint admin center is set to Anyone. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#mssharepoint31v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for more info", "Comments": [ ], "ResolutionDate": null }, { "Control ID": "MS.SHAREPOINT.3.2v1", "Requirement": "The allowable file and folder permissions for links SHALL be set to view only.<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "This policy is only applicable if the external sharing slider in the SharePoint admin center is set to Anyone. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#mssharepoint32v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for more info", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "This policy is only applicable if the external sharing slider in the SharePoint admin center is set to Anyone. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#mssharepoint32v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for more info", "Comments": [ ], "ResolutionDate": null }, { "Control ID": "MS.SHAREPOINT.3.3v1", "Requirement": "Reauthentication days for people who use a verification code SHALL be set to 30 days or less.<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "This policy is only applicable if the external sharing slider in the SharePoint admin center is set to Anyone or New and Existing Guests. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#mssharepoint33v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for more info", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "This policy is only applicable if the external sharing slider in the SharePoint admin center is set to Anyone or New and Existing Guests. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/sharepoint.md#mssharepoint33v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for more info", "Comments": [ ], "ResolutionDate": null } ] } ], "MetaData": { "Tenant Display Name": "tqhjy", "Report Date": "05/04/2026 17:15:48 Coordinated Universal Time", "Baseline Version": "1", "Module Version": "1.8.0" } } ] |