STIGQter: STIG Summary: Exchange 2010 Mailbox Server STIG Version: 1 Release: 10 Benchmark Date: 28 Jul 2017:

Audit record parameters must be set.

DISA Rule

SV-44037r2_rule

Vulnerability Number

V-33617

Group Title

Exch-2-833

Rule Version

Exch-2-833

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Open the Exchange Management Shell and enter the following command:

Set-AdminAuditLogConfig -AdminAuditLogParameters *

Check Contents

Open the Exchange Management Shell and enter the following command:

Get-AdminAuditLogConfig | Select AdminAuditLogParameters

If the value of 'AdminAuditLogParameters' is not set to '{*}', this is a finding.

Note: The value of {*} indicates all parameters are being audited.

Vulnerability Number

V-33617

Documentable

False

Rule Version

Exch-2-833

Severity Override Guidance

Open the Exchange Management Shell and enter the following command:

Get-AdminAuditLogConfig | Select AdminAuditLogParameters

If the value of 'AdminAuditLogParameters' is not set to '{*}', this is a finding.

Note: The value of {*} indicates all parameters are being audited.

Check Content Reference

M

Target Key

1995

Comments