STIGQter: STIG Summary: MS Exchange 2010 Edge Transport Server STIG Version: 1 Release: 15 Benchmark Date: 26 Apr 2019:

SMTP IP Allow List entries must be empty.

DISA Rule

SV-43980r1_rule

Vulnerability Number

V-33560

Group Title

Exch-2-342

Rule Version

Exch-2-342

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Open the Exchange Management Shell and noting identifiers from above, enter the following command:

Remove-IPAllowListEntry -Identity <IP Allow List entry ID>

Check Contents

Access the EDSP and identify the SMTP ‘allow list’ settings.

Open the Exchange Management Shell and enter the following command:

Get-IPAllowListEntry | fl

If the result returns any values, this is a finding.
If the result returns any values, but has signoff and risk acceptance in the EDSP, this is not a finding.

Vulnerability Number

V-33560

Documentable

False

Rule Version

Exch-2-342

Severity Override Guidance

Access the EDSP and identify the SMTP ‘allow list’ settings.

Open the Exchange Management Shell and enter the following command:

Get-IPAllowListEntry | fl

If the result returns any values, this is a finding.
If the result returns any values, but has signoff and risk acceptance in the EDSP, this is not a finding.

Check Content Reference

M

Target Key

1995

Comments