STIGQter: STIG Summary: Microsoft Exchange 2013 Mailbox Server Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

Exchange auto-forwarding email to remote domains must be disabled or restricted.

DISA Rule

SV-207269r615936_rule

Vulnerability Number

V-207269

Group Title

SRG-APP-000038

Rule Version

EX13-MB-000015

Severity

CAT II

CCI(s)

CCI-001368 - The information system enforces approved authorizations for controlling the flow of information within the system based on organization-defined information flow control policies.

Weight

Fix Recommendation

Non-Enterprise Mail Fix Text:

Open the Exchange Management Shell and enter the following command:

Set-RemoteDomain -Identity <'IdentityName'> -AutoForwardEnabled $false

Note: The <IdentityName> value must be in quotes.

Enterprise Mail Fix Text:

New-RemoteDomain -Name <NewRemoteDomainName> -DomainName <SMTP Address>

Note: NewRemoteDomainName must either be a .mil or .gov domain.

Set-RemoteDomain -Identity <'RemoteDomainIdentity'> -AutoForwardEnabled $true

Note: The <RemoteDomainIdentity> value must be in quotes.

Check Contents

Non-Enterprise Mail Check Content:

Open the Exchange Management Shell and enter the following command:

Get-RemoteDomain | Select Identity, AutoForwardEnabled

If the value of AutoForwardEnabled is not set to False, this is a finding.

Enterprise Mail Check Content:

If the value of AutoForwardEnabled is set to True, this is not a finding.

and

In the Exchange Management Shell, enter the following command:

Get-RemoteDomain

If the value of RemoteDomain is not set to a .mil and/or .gov domain(s), this is a finding.

Exchange auto-forwarding email to remote domains must be disabled or restricted.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments