STIGQter: STIG Summary: MS Exchange 2013 Edge Transport Server Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Apr 2019: STIGQter: STIG Summary: MS Exchange 2013 Edge Transport Server Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Apr 2019:SV-84479r1_rule
V-69857
SRG-APP-000247
EX13-EG-000155
CAT III
10
Update the EDSP.
Open the Exchange Management Shell and enter the following command:
Set-ReceiveConnector -Identity <'IdentityName'> -MaxInboundConnection 5000
Note: The <IdentityName> value must be in quotes.
or
The value as identified by the EDSP that has obtained a signoff with risk acceptance.
Repeat the procedure for each Receive connector.
Review the Email Domain Security Plan (EDSP).
Determine the Maximum Inbound connections value.
Open the Exchange Management Shell and enter the following command:
Get-ReceiveConnector | Select Name, Identity, MaxInboundConnection
Identify Internet-facing connectors.
For each Receive connector, if the value of MaxInboundConnection is not set to 5000, this is a finding.
or
If MaxInboundConnection is set to a value other than 5000 or is set to unlimited and has signoff and risk acceptance in the EDSP, this is not a finding.
V-69857
False
EX13-EG-000155
Review the Email Domain Security Plan (EDSP).
Determine the Maximum Inbound connections value.
Open the Exchange Management Shell and enter the following command:
Get-ReceiveConnector | Select Name, Identity, MaxInboundConnection
Identify Internet-facing connectors.
For each Receive connector, if the value of MaxInboundConnection is not set to 5000, this is a finding.
or
If MaxInboundConnection is set to a value other than 5000 or is set to unlimited and has signoff and risk acceptance in the EDSP, this is not a finding.
M
3099