Check: Exch-2-014
Exchange 2010 Hub Transport Server STIG:
Exch-2-014
(in version v1 r12)
Title
Servers must use approved DoD certificates. (Cat II impact)
Discussion
Server certificates are required for many security features in Exchange; without them the server cannot engage in many forms of secure communication. Failure to implement valid certificates makes it virtually impossible to secure Exchange's communications.
Check Content
Open the Exchange Management Shell and enter the following command: Get-ExchangeCertificate | Select CertificateDomains, issuer If the value of 'CertificateDomains' does not indicate it is issued by the DoD, this is a finding.
Fix Text
Remove the non-DoD certificate and import the correct DoD certificates.
Additional Identifiers
Rule ID: SV-44046r2_rule
Vulnerability ID: V-33626
Group Title: Exch-2-014
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
Number | Definition |
---|---|
No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
Number | Title |
---|---|
No controls are assigned to this check |