STIGQter: STIG Summary: Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

Exchange software must be installed on a separate partition from the OS.

DISA Rule

SV-221257r612603_rule

Vulnerability Number

V-221257

Group Title

SRG-APP-000431

Rule Version

EX16-ED-000620

Severity

CAT II

CCI(s)

• CCI-002530 - The information system maintains a separate execution domain for each executing process.

Weight

10

Fix Recommendation

Update the EDSP to reflect the directory where Exchange is installed.

Install Exchange on a dedicated application directory or partition separate than that of the OS.

Check Contents

Review the Email Domain Security Plan (EDSP).

Determine the directory where Exchange is installed.

Open Windows Explorer.

Navigate to the location where Exchange is installed.

If Exchange resides on a directory or partition other than that of the OS and does not have other applications installed (without associated approval from the ISSO), this is not a finding.

Vulnerability Number

V-221257

Documentable

False

Rule Version

EX16-ED-000620

Severity Override Guidance

Review the Email Domain Security Plan (EDSP).

Determine the directory where Exchange is installed.

Open Windows Explorer.

Navigate to the location where Exchange is installed.

If Exchange resides on a directory or partition other than that of the OS and does not have other applications installed (without associated approval from the ISSO), this is not a finding.

Check Content Reference

M

Target Key

4079

Comments