STIGQter: STIG Summary: Exchange 2010 Client Access Server STIG Version: 1 Release: 9 Benchmark Date: 27 Jan 2017:

The Public Folder virtual directory must be removed if not in use by the site.

DISA Rule

SV-43991r1_rule

Vulnerability Number

V-33571

Group Title

Exch-1-103

Rule Version

Exch-1-103

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Open the Exchange Management Shell and enter the following command:

Remove-PublicFolder -Identity <'Identity'> -Server <'ServerName'> -Recurse: $true

Note: This command removes both the root directory and any subdirectories.

Check Contents

If public folders are in use this check is NA.

Open the Exchange Management Shell and enter the following command:

Get-PublicFolder | Select Name, Identity

If public folders are not in use and directories exist, this is a finding.

Vulnerability Number

V-33571

Documentable

False

Rule Version

Exch-1-103

Severity Override Guidance

If public folders are in use this check is NA.

Open the Exchange Management Shell and enter the following command:

Get-PublicFolder | Select Name, Identity

If public folders are not in use and directories exist, this is a finding.

Check Content Reference

M

Target Key

1995

Comments