Checklist Summary:

This document provides prescriptive guidance for establishing a secure configuration posture for Microsoft Windows Exchange Server 2019. This secure configuration guide is based on Microsoft Windows Exchange Server 2019 and was tested against Microsoft Windows Exchange Server 2019. Both UI and PowerShell guidance will be provided when possible. Although deploying Windows Server Core with Exchange Server 2019 provides significant attack surface reduction, CIS aims to evaluate the UI and PowerShell methods on both Desktop Experience and Core systems. Server Core should be strongly considered when deploying a new Microsoft Server of any type. To obtain the latest version of this secure configuration guide, please visit https://www.cisecurity.org/cis-benchmarks/. If you have questions, comments, or have identified ways to improve this guide, please write us at feedback@cisecurity.org.

Checklist Role:

• Enterprise Mail Server

Known Issues:

Not provided.

Target Audience:

This benchmark is intended for system and application administrators, security specialists, auditors, help desk, and platform deployment personnel who plan to develop, deploy, assess, or secure solutions that incorporate Microsoft Exchange Server 2019 on a Microsoft Windows platform.

Target Operational Environment:

• Managed
• Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not provided.

Regulatory Compliance:

Not provided.

Comments/Warnings/Miscellaneous:

Not provided.

Disclaimer:

Not provided.

Product Support:

Not provided.

Point of Contact:

feedback@cisecurity.org

Sponsor:

Not provided.

Licensing:

Not provided.

Change History:

new checklist - 2/29/24
updated status to FINAL - 3/29/24

Dependency/Requirements:

URL	Description

References:

Reference URL	Description

NIST checklist record last modified on 03/29/2024