STIGQter STIGQter: STIG Summary: MS Exchange 2013 Edge Transport Server Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Apr 2019:

The Exchange Internet Receive connector connections count must be set to default.

DISA Rule

SV-84479r1_rule

Vulnerability Number

V-69857

Group Title

SRG-APP-000247

Rule Version

EX13-EG-000155

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

Update the EDSP.

Open the Exchange Management Shell and enter the following command:

Set-ReceiveConnector -Identity <'IdentityName'> -MaxInboundConnection 5000

Note: The <IdentityName> value must be in quotes.

or

The value as identified by the EDSP that has obtained a signoff with risk acceptance.

Repeat the procedure for each Receive connector.

Check Contents

Review the Email Domain Security Plan (EDSP).

Determine the Maximum Inbound connections value.

Open the Exchange Management Shell and enter the following command:

Get-ReceiveConnector | Select Name, Identity, MaxInboundConnection

Identify Internet-facing connectors.

For each Receive connector, if the value of MaxInboundConnection is not set to 5000, this is a finding.

or

If MaxInboundConnection is set to a value other than 5000 or is set to unlimited and has signoff and risk acceptance in the EDSP, this is not a finding.

Vulnerability Number

V-69857

Documentable

False

Rule Version

EX13-EG-000155

Severity Override Guidance

Review the Email Domain Security Plan (EDSP).

Determine the Maximum Inbound connections value.

Open the Exchange Management Shell and enter the following command:

Get-ReceiveConnector | Select Name, Identity, MaxInboundConnection

Identify Internet-facing connectors.

For each Receive connector, if the value of MaxInboundConnection is not set to 5000, this is a finding.

or

If MaxInboundConnection is set to a value other than 5000 or is set to unlimited and has signoff and risk acceptance in the EDSP, this is not a finding.

Check Content Reference

M

Target Key

3099

Comments