Checklist Summary:

The Microsoft Exchange 2013 Server Security Technical Implementation Guides, Edge Transport, Client Access, Mailbox, and Email Services Policy, are published as tools to improve the security of Department of Defense (DoD) information systems. These documents are meant for use in conjunction with the Windows Operating System (OS) STIG and any appropriate STIG(s) applicable to the system.

Checklist Role:

• Enterprise Email Server

Known Issues:

Not Provided

Target Audience:

This document is a requirement for all DoD-administered systems and all systems connected to DoD networks, as addressed in the technology section. These requirements are designed to assist System Managers (SMs), Information Assurance Managers (IAMs), Information Assurance Officers (IAOs), and System Administrators (SAs) with configuring and maintaining security controls.

Target Operational Environment:

• Managed
• Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not Provided

Regulatory Compliance:

DoD Directive (DoDD) 8500.1

Comments/Warnings/Miscellaneous:

Not Provided

Disclaimer:

Not Provided

Product Support:

[email protected]

Point of Contact:

[email protected]

Sponsor:

Not Provided

Licensing:

Not Provided

Change History:

moved to FINAL - 9/23/2016
Updated resource - 01/27/2017
Updated to FINAL - 03/08/2017

Dependency/Requirements:

URL	Description
http://iasecontent.disa.mil/stigs/pdf/U_Microsoft_Exchange_2013_STIGs_V1_Release_Memo.pdf	Microsoft Exchange 2013 STIG Release Memo
http://iasecontent.disa.mil/stigs/zip/U_MS_Exchange_2013_V1R1_Overview.zip	Microsoft Exchange 2013 Overview - Ver 1, Rel 1

References:

Reference URL	Description

NIST checklist record last modified on 03/08/2017