STIGQter: STIG Summary: MS Exchange 2013 Client Access Server Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Jan 2020:

Exchange must provide redundancy.

DISA Rule

SV-84395r1_rule

Vulnerability Number

V-69773

Group Title

SRG-APP-000435

Rule Version

EX13-CA-000145

Severity

CAT II

CCI(s)

• CCI-002385 - The information system protects against or limits the effects of organization-defined types of denial of service attacks by employing organization-defined security safeguards.

Weight

10

Fix Recommendation

Update the EDSP.

Configure two or more CAS servers for load balancing.

Check Contents

Review the Email Domain Security Plan (EDSP).

Determine if the Exchange Servers are using redundancy.

Get-ClientAccessServer | Select Name, Site

If the value returned is not at least two CAS servers, this is a finding.

Vulnerability Number

V-69773

Documentable

False

Rule Version

EX13-CA-000145

Severity Override Guidance

Review the Email Domain Security Plan (EDSP).

Determine if the Exchange Servers are using redundancy.

Get-ClientAccessServer | Select Name, Site

If the value returned is not at least two CAS servers, this is a finding.

Check Content Reference

M

Target Key

3097

Comments