EX13-MB-000150 – Exchange email-forwarding SMTP domains must be restricted.

Details

Auto-forwarded email accounts do not meet the requirement for digital signature and encryption of CUI and PII IAW DoDI 8520.2 (reference ee) and DoD Director for Administration and Management memorandum, ‘Safeguarding Against and Responding to the Breach of Personally Identifiable Information’.

Use of forwarding set by an administrator interferes with nonrepudiation requirements that each end user be responsible for creation and destination of email data.

Solution

Update the EDSP.

Open the Exchange Management Shell and enter the following command:

Set- RemoteDomain -Identity

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Exchange_2013_Y21M01_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Windows.

References

800-53|SC-28
CAT|II
CCI|CCI-001199
Rule-ID|SV-207296r615936_rule
STIG-ID|EX13-MB-000150
STIG-Legacy|SV-84621
STIG-Legacy|V-69999
Vuln-ID|V-207296

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles