The Exchange local machine policy must require signed scripts.
An XCCDF Rule
Description
<VulnDiscussion>Scripts, especially those downloaded from untrusted locations, often provide a way for attackers to infiltrate a system. By setting machine policy to prevent unauthorized script executions, unanticipated system impacts can be avoided.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-84433r1_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Open the Exchange Management Shell and enter the following command:
Set-ExecutionPolicy RemoteSigned