4,594 questions
MD5 is used by fast hashing algorithms. More information can be found at https://learn.microsoft.com/en-us/sharepoint/security-for-sharepoint-server/federal-information-processing-standard-security-standards.
SharePoint 2019 STIG Compliance DES RC4 MD5
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 30%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Art
71
Reputation points
I am trying to be compliant and I am stuck on the below request,
"Under “Options”, in the “SSL Cipher Suites” text box, enter desired cipher suites that are not DES or RC4."
If I remove RC4 that MD5 is in someway attached to, the "Central Administration" web page errors with a FIPS error.
I am sure the same will be said for the Web Application / Sites also.
I know that MD5 is required by SharePoint although that answer is not good enough to close this findings (V-59965, V-59967, V-59969, V-59971, V-59989).
I wish I could say that I have the understanding to present a technical reason why although I am at a loss and am asking for help.
I am also open to a possible book that discusses SharePoint and MD5, I believe what I have read that Microsoft uses FISMA instead of FIPS
Microsoft 365 and Office | SharePoint Server | For business
Accepted answer
-
trevorseward 11,711 Reputation points2020-08-14T17:41:22.003+00:00 -
Art 71 Reputation points
2020-08-14T18:32:15.807+00:00 I am using your book to build SharePoint 2019 on premise server's. I am having some difficulty with Search and User Profile Service although I am sure I will get through it.
Thank you for the answer and thank you for the book!
I have a couple of questions about Search and UPS although that is for another day.
Sign in to comment -