STIGQter STIGQter: STIG Summary: Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020: Exchange must have antispam filtering installed.

DISA Rule

SV-95289r1_rule

Vulnerability Number

V-80579

Group Title

SRG-APP-000261

Rule Version

EX16-ED-000530

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Install the AntiSpam module.

Open the Exchange Management Shell and enter the following command:

& $env:ExchangeInstallPath\Scripts\Install-AntiSpamAgents.ps1

Check Contents

Review the Email Domain Security Plan (EDSP) for an installed antispam product.

Note: If using another DoD-approved antispam product for email or a DoD-approved Email Gateway spamming device, such as Enterprise Email Security Gateway (EEMSG), this is not applicable.

Open the Exchange Management Shell and enter the following command:

Get-ContentFilterConfig | Format-Table Name, Enabled

If no value is returned, this is a finding.

Vulnerability Number

V-80579

Documentable

False

Rule Version

EX16-ED-000530

Severity Override Guidance

Review the Email Domain Security Plan (EDSP) for an installed antispam product.

Note: If using another DoD-approved antispam product for email or a DoD-approved Email Gateway spamming device, such as Enterprise Email Security Gateway (EEMSG), this is not applicable.

Open the Exchange Management Shell and enter the following command:

Get-ContentFilterConfig | Format-Table Name, Enabled

If no value is returned, this is a finding.

Check Content Reference

M

Target Key

3353

Comments