EX13-CA-000030 – Exchange Servers must use approved DoD certificates.
Details Server certificates are required for many security features in Exchange; without them the server cannot engage in many forms...
- Home
- Security Hardening
- DISA Microsoft Exchange 2013 Client Access Server STIG V1R3
DISA Microsoft Exchange 2013 Client Access Server STIG V1R3
EX13-CA-000035 – Exchange ActiveSync (EAS) must only use certificate-based authentication to access email – BasicAuthEnabled
Details Identification and Authentication provide the foundation for access control. For EAS to be used effectively on DoD networks, client...EX13-CA-000035 – Exchange ActiveSync (EAS) must only use certificate-based authentication to access email – ClientCertAuth
Details Identification and Authentication provide the foundation for access control. For EAS to be used effectively on DoD networks, client...EX13-CA-000035 – Exchange ActiveSync (EAS) must only use certificate-based authentication to access email – ExternalAuthenticationMethods
Details Identification and Authentication provide the foundation for access control. For EAS to be used effectively on DoD networks, client...EX13-CA-000035 – Exchange ActiveSync (EAS) must only use certificate-based authentication to access email – InternalAuthenticationMethods
Details Identification and Authentication provide the foundation for access control. For EAS to be used effectively on DoD networks, client...EX13-CA-000035 – Exchange ActiveSync (EAS) must only use certificate-based authentication to access email – WebSiteSSLEnabled
Details Identification and Authentication provide the foundation for access control. For EAS to be used effectively on DoD networks, client...EX13-CA-000035 – Exchange ActiveSync (EAS) must only use certificate-based authentication to access email – WindowsAuthEnabled
Details Identification and Authentication provide the foundation for access control. For EAS to be used effectively on DoD networks, client...EX13-CA-000040 – Exchange must have IIS map client certificates to an approved certificate server.
Details For EAS to be used effectively on DoD networks, client certificate authentication must be used for communications between the...EX13-CA-000125 – Exchange software must be monitored for unauthorized changes.
Details Monitoring software files for changes against a baseline on a regular basis may help detect the possible introduction of...EX13-CA-000130 – Exchange services must be documented and unnecessary services must be removed or disabled.
Details Unneeded but running services offer attackers an enhanced attack profile, and attackers are constantly watching to discover open ports...