STIGQter: STIG Summary: Microsoft Exchange 2013 Mailbox Server Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

Exchange Mailbox databases must reside on a dedicated partition.

DISA Rule

SV-207286r615936_rule

Vulnerability Number

V-207286

Group Title

SRG-APP-000211

Rule Version

EX13-MB-000100

Severity

CAT II

CCI(s)

• CCI-001082 - The information system separates user functionality (including user interface services) from information system management functionality.

Weight

10

Fix Recommendation

Update the EDSP.

Configure the mailbox databases on a dedicated partition.

Check Contents

Review the Email Domain Security Plan (EDSP).

Determine the location where the Exchange Mailbox databases reside.

Open the Exchange Management Shell and enter the following command:

Get-MailboxDatabase | Select Name, Identity, EdbFilePath

Open Windows Explorer and navigate to and verify the mailbox databases are on a dedicated partition.

If the mailbox databases are not on a dedicated partition, this is a finding.

Vulnerability Number

V-207286

Documentable

False

Rule Version

EX13-MB-000100

Severity Override Guidance

Review the Email Domain Security Plan (EDSP).

Determine the location where the Exchange Mailbox databases reside.

Open the Exchange Management Shell and enter the following command:

Get-MailboxDatabase | Select Name, Identity, EdbFilePath

Open Windows Explorer and navigate to and verify the mailbox databases are on a dedicated partition.

If the mailbox databases are not on a dedicated partition, this is a finding.

Check Content Reference

M

Target Key

2923

Comments