Skip to content
ATO Pathways
  Log In

Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • More than one Edge server must be deployed.

    <VulnDiscussion>To ensure hostile insiders are unable to easily commit DoS attacks and reduce the effectiveness of mail flow throughout the e...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

  • Exchange Outbound Connection Timeout must be 10 minutes or less.

    &lt;VulnDiscussion&gt;Email system availability depends in part on best practice strategies for setting tuning configurations. This configuration c...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

  • Exchange Outbound Connection limit per Domain Count must be controlled.

    &lt;VulnDiscussion&gt;Email system availability depends in part on best practice strategies for setting tuning configurations. This configuration c...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

  • Exchange receive connector maximum hop count must be 60.

    &lt;VulnDiscussion&gt;Email system availability depends in part on best practice strategies for setting tuning configurations. This setting control...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

  • Exchange receive connectors must control the number of recipients per message.

    &lt;VulnDiscussion&gt;Email system availability depends in part on best practice strategies for setting tuning configurations. This configuration...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

  • Exchange send connector connections count must be limited.

    &lt;VulnDiscussion&gt;This setting controls the maximum number of simultaneous outbound connections allowed for a given SMTP Connector and can be u...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

  • Exchange message size restrictions must be controlled on Send connectors.

    &lt;VulnDiscussion&gt;Email system availability depends in part on best practice strategies for setting tuning configurations. For message size res...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

  • Exchange send connectors delivery retries must be controlled.

    &lt;VulnDiscussion&gt;This setting controls the rate at which delivery attempts from the home domain are retried and user notifications are issued ...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

  • Exchange receive connectors must be clearly named.

    &lt;VulnDiscussion&gt;For receive connectors, unclear naming as to direction and purpose increases risk that messages may not flow as intended, tro...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

  • Exchange receive connectors must control the number of recipients chunked on a single message.

    &lt;VulnDiscussion&gt;Email system availability depends in part on best practice strategies for setting tuning configurations. For message size res...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules