Check: EX16-ED-000150
Microsoft Exchange 2016 Edge Transport Server STIG:
EX16-ED-000150
(in versions v2 r5 through v1 r1)
Title
The Exchange local machine policy must require signed scripts. (Cat II impact)
Discussion
Scripts, especially those downloaded from untrusted locations, often provide a way for attackers to infiltrate a system. By setting machine policy to prevent unauthorized script executions, unanticipated system impacts can be avoided.
Check Content
Open the Exchange Management Shell and enter the following command: Get-ExecutionPolicy If the value returned is not "RemoteSigned", this is a finding.
Fix Text
Open the Exchange Management Shell and enter the following command: Set-ExecutionPolicy RemoteSigned
Additional Identifiers
Rule ID: SV-221216r879584_rule
Vulnerability ID: V-221216
Group Title: SRG-APP-000131
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001749 |
The information system prevents the installation of organization-defined software components without verification the software component has been digitally signed using a certificate that is recognized and approved by the organization. |
Controls
Number | Title |
---|---|
CM-5 (3) |
Signed Components |