STIGQter: STIG Summary: MS Exchange 2013 Edge Transport Server Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Apr 2019: STIGQter: STIG Summary: MS Exchange 2013 Edge Transport Server Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Apr 2019:SV-84435r2_rule
V-69813
SRG-APP-000213
EX13-EG-000080
CAT II
10
Open the Exchange Management Shell and enter the following command:
Set-SendConnector <'IdentityName'> -SmartHosts <'IP Address of Smart Host'> -DNSRoutingEnabled $false
Note: The <IdentityName> value must be in quotes.
Repeat the procedures for each Send connector.
Review the Email Domain Security Plan (EDSP).
If using an Edge Server a Smart Host does not need to be configured, therefore, this is not a finding.
Determine the Internet-facing connectors.
Open the Exchange Management Shell and enter the following command:
Get-SendConnector | Select Name, Identity, SmartHosts, DNSRoutingEnabled
For each Send connector, if the value of SmartHosts does not return the Smart Host IP Address and the value for DNSRoutingEnabled is not set to False, this is a finding.
V-69813
False
EX13-EG-000080
Review the Email Domain Security Plan (EDSP).
If using an Edge Server a Smart Host does not need to be configured, therefore, this is not a finding.
Determine the Internet-facing connectors.
Open the Exchange Management Shell and enter the following command:
Get-SendConnector | Select Name, Identity, SmartHosts, DNSRoutingEnabled
For each Send connector, if the value of SmartHosts does not return the Smart Host IP Address and the value for DNSRoutingEnabled is not set to False, this is a finding.
M
3099