II - Mission Support Public
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000219
Group -
Exchange internal Send connectors must use domain security (mutual authentication Transport Layer Security).
The Simple Mail Transfer Protocol (SMTP) connector is used by Exchange to send and receive messages from server to server. Several controls work together to provide security between internal server...Rule Medium Severity -
SRG-APP-000219
Group -
Exchange Internet-facing Receive connectors must offer Transport Layer Security (TLS) before using basic authentication.
Sending unencrypted email over the Internet increases the risk that messages can be intercepted or altered. TLS is designed to protect confidentiality and data integrity by encrypting email message...Rule Medium Severity -
SRG-APP-000247
Group -
Exchange Outbound Connection Timeout must be 10 minutes or less.
Email system availability depends in part on best practice strategies for setting tuning configurations. This configuration controls the number of idle minutes before the connection is dropped. It ...Rule Medium Severity -
SRG-APP-000247
Group -
Exchange Outbound Connection Limit per Domain Count must be controlled.
Email system availability depends in part on best practice strategies for setting tuning configurations. This configuration controls the maximum number of simultaneous outbound connections from a d...Rule Medium Severity -
SRG-APP-000247
Group -
Exchange Send connector connections count must be limited.
This setting controls the maximum number of simultaneous outbound connections allowed for a given SMTP Connector and can be used to throttle the SMTP service if resource constraints warrant it. If ...Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.