The following is a description of the elements, types, and attributes that compose the SharePoint specific system characteristic items found in Open Vulnerability and Assessment Language (OVAL). Each item is an extension of the standard item element defined in the Core System Characteristic Schema. Through extension, each item inherits a set of elements and attributes that are shared amongst all OVAL Items. Each item is described in detail and should provide the information necessary to understand what each element and attribute represents. This document is intended for developers and assumes some familiarity with XML. A high level description of the interaction between the different tests and their relationship to the Core System Characteristic Schema is not outlined here.
The SharePoint Component Schema is based on the SharePoint Object Model (Windows SharePoint Services 3.0)
The OVAL Schema is maintained by The MITRE Corporation and developed by the public OVAL Community. For more information, including how to get involved in the project and how to submit change requests, please visit the OVAL website at http://oval.mitre.org.
This spwebapplication item stores information for security related features and permissions related to each web application. See the defintion of the SPWebApplication class in the SharePoint object model documentation.
This spgroup item stores information for security related features related to site groups
Child Elements Type MinOccurs MaxOccurs sitecollectionurl oval-sc:EntityItemStringType 0 1 gname oval-sc:EntityItemStringType 0 1 autoacceptrequesttojoinleave oval-sc:EntityItemBoolType 0 1 allowmemberseditmembership oval-sc:EntityItemBoolType 0 1 onlyallowmembersviewmembership oval-sc:EntityItemBoolType 0 1
This spweb item stores information for security related features related to site collections.
Child Elements Type MinOccurs MaxOccurs webcollectionurl oval-sc:EntityItemStringType 0 1 sitecollectionurl oval-sc:EntityItemStringType 0 1 secondarysitecolladmin oval-sc:EntityItemStringType 0 1 secondsitecolladminenabled oval-sc:EntityItemBoolType 0 1 allowanonymousaccess oval-sc:EntityItemBoolType 0 1
An SPList represents a list of content on a Sharepoint web site. It consists of items or rows and columns or fields that contain data.
Child Elements Type MinOccurs MaxOccurs spsiteurl oval-sc:EntityItemStringType 0 1 irmenabled oval-sc:EntityItemBoolType 0 1 enableversioning oval-sc:EntityItemBoolType 0 1 nocrawl oval-sc:EntityItemBoolType 0 1
An SPAntivirusSettings Item represents the set of antivirus-related security settings on a Sharepoint server.
Child Elements Type MinOccurs MaxOccurs spwebservicename oval-sc:EntityItemStringType 1 1 spfarmname oval-sc:EntityItemStringType 1 1 allowdownload oval-sc:EntityItemBoolType 0 1 cleaningenabled oval-sc:EntityItemBoolType 0 1 downloadscanenabled oval-sc:EntityItemBoolType 0 1 numberofthreads oval-sc:EntityItemIntType 0 1 skipsearchcrawl oval-sc:EntityItemBoolType 0 1 timeout oval-sc:EntityItemIntType 0 1 uploadscanenabled oval-sc:EntityItemBoolType 0 1 vendorupdatecount oval-sc:EntityItemIntType 0 1
This spsiteadministration item stores information for security related features and permissions related to each top-level web sites. See the defintion of the SPSiteAdministration class in the SharePoint object model documentation.
Child Elements Type MinOccurs MaxOccurs sitecollectionurl oval-sc:EntityItemStringType 0 1 storagemaxlevel oval-sc:EntityItemIntType 0 1 storagewarninglevel oval-sc:EntityItemIntType 0 1
This spsite item stores information for security related features for sites. See the defintion of the SPSite class in the SharePoint object model documentation.
Child Elements Type MinOccurs MaxOccurs sitecollectionurl oval-sc:EntityItemStringType 0 1 quotaname oval-sc:EntityItemStringType 0 1 url oval-sc:EntityItemStringType 0 1
The spcrawlrule_item specifies rules that the SharePoint system follows when it crawls the content of sites stored within it.
Child Elements Type MinOccurs MaxOccurs spsiteurl oval-sc:EntityItemStringType 1 1 crawlashttp oval-sc:EntityItemBoolType 0 1 enabled oval-sc:EntityItemBoolType 0 1 followcomplexurls oval-sc:EntityItemBoolType 0 1 path oval-sc:EntityItemStringType 0 1 priority oval-sc:EntityItemIntType 0 1 suppressindexing oval-sc:EntityItemBoolType 0 1 accountname oval-sc:EntityItemStringType 0 1
This represents the set of Job Definitions that are scheduled to run on each SharePoint Web Application
Child Elements Type MinOccurs MaxOccurs webappuri oval-sc:EntityItemStringType 1 1 displayname oval-sc:EntityItemStringType 0 1 isdisabled oval-sc:EntityItemBoolType 0 1 retry oval-sc:EntityItemBoolType 0 1 title oval-sc:EntityItemStringType 0 1
This represents the set of Best Bets for a site collection.
Child Elements Type MinOccurs MaxOccurs sitecollectionurl oval-sc:EntityItemStringType 0 1 bestbeturl oval-sc:EntityItemStringType 0 1 title oval-sc:EntityItemStringType 0 1 description oval-sc:EntityItemStringType 0 1
This represents the set of Information Policies for a site collection.
Child Elements Type MinOccurs MaxOccurs sitecollectionurl oval-sc:EntityItemStringType 0 1 id oval-sc:EntityItemStringType 0 1 name oval-sc:EntityItemStringType 0 1 description oval-sc:EntityItemStringType 0 1 longdescription oval-sc:EntityItemStringType 0 1
This represents the set of diagnostic capabilities for Windows Sharepoint Services.
Child Elements Type MinOccurs MaxOccurs farmname oval-sc:EntityItemStringType 0 1 displayname oval-sc:EntityItemStringType 0 1 logcutinterval oval-sc:EntityItemIntType 0 1 loglocation oval-sc:EntityItemStringType 0 1 logstokeep oval-sc:EntityItemIntType 0 1 required oval-sc:EntityItemBoolType 0 1 typename oval-sc:EntityItemStringType 0 1
The diagnostics level associated with a particular instance of a diagnostics service on a Sharepoint farm.
Child Elements Type MinOccurs MaxOccurs farmname oval-sc:EntityItemStringType 0 1 eventseverity sp-sc:EntityItemEventSeverityType 0 1 hidden oval-sc:EntityItemBoolType 0 1 levelid oval-sc:EntityItemStringType 0 1 levelname oval-sc:EntityItemStringType 0 1 traceseverity sp-sc:EntityItemTraceSeverityType 0 1
This represents a policy feature that is installed on the Sharepoint server farm.
Child Elements Type MinOccurs MaxOccurs farmname oval-sc:EntityItemStringType 0 1 configpage oval-sc:EntityItemStringType 0 1 defaultcustomdata oval-sc:EntityItemStringType 0 1 description oval-sc:EntityItemStringType 0 1 globalconfigpage oval-sc:EntityItemStringType 0 1 globalcustomdata oval-sc:EntityItemStringType 0 1 group oval-sc:EntityItemStringType 0 1 name oval-sc:EntityItemStringType 0 1 publisher oval-sc:EntityItemStringType 0 1 state sp-sc:EntityItemPolicyFeatureStateType 0 1
This represents a policy on the Sharepoint system.
Child Elements Type MinOccurs MaxOccurs webappuri oval-sc:EntityItemStringType 0 1 urlzone sp-sc:EntityItemUrlZoneType 0 1 displayname oval-sc:EntityItemStringType 0 1 issystemuser oval-sc:EntityItemBoolType 0 1 username oval-sc:EntityItemStringType 0 1 policyroletype sp-sc:EntityItemPolicyRoleType 0 1
The EntityItemUrlZoneType restricts a string value to a set of values that describe the different IIS Url Zones. The empty string is also allowed to support empty element associated with error conditions.
Value Description Custom
Default
Extranet
Intranet
Internet
The empty string value is permitted here to allow for detailed error reporting.
The EntityItemEventSeverityType restricts a string value to a set of values that describe the different states that can be configured for a diagnostics level event severity level property of the diagnostics service.
Value Description Error
ErrorCritical
ErrorSecurityBreach
ErrorServiceUnavailable
FailureAudit
Information
None
Success
SuccessAudit
Warning
The empty string value is permitted here to allow for detailed error reporting.
The EntityItemTraceSeverityType restricts a string value to a set of values that describe the different states that can be configured for a diagnostics level trace severity level property of the diagnostics service.
Value Description High
Medium
Monitorable
None
Unexpected
Verbose
The empty string value is permitted here to allow for detailed error reporting.
The EntityItemPolicyFeatureStateType restricts a string value to a set of values that describe the different states that can be configured for a policy feature.
Value Description Hidden
Specifies that the policy feature is hidden from the Sharepoint Central Administration user interface.
Visible
Specifies that the policy feature is visible from the Sharepoint Central Administration user interface.
The empty string value is permitted here to allow for detailed error reporting.
The EntityItemPolicyRoleType restricts a string value to a set of values that describe the different Policy settings for Access Control that are available for users.
Value Description DenyAll
Deny all rights.
DenyWrite
Deny write permissions.
FullControl
Grant full control.
FullRead
Grant full read permissions.
None
No role type assigned.
The empty string value is permitted here to allow for detailed error reporting.