UCF STIG Viewer Logo

Email SMTP forwarding must be restricted.


Overview

Finding ID Version Rule ID IA Controls Severity
EXCH-MB-415 EXCH-MB-415 EXCH-MB-415_rule Medium
Description
Auto-forwarding email to external email accounts is prohibited. Auto-forwarded e-mail to non-CAC enabled e-mail accounts does not meet requirement for digital signature and encryption of CUI and PII IAW DODI 8520.2 (reference ee) and DOD Director for Administration and Management memorandum, "Safeguarding Against and Responding to the Breach of Personally Identifiable Information" (reference ttt).
STIG Date
Microsoft Exchange 2010 Mailbox Server Role 2012-05-31

Details

Check Text ( C-_chk )


Open the Exchange Management Shell and enter the following command.

Get-Mailbox -Filter {ForwardingSMTPAddress -ne $null}

If any user has a forwarding SMTP address, this is a finding.
Fix Text (F-_fix)
Open the Exchange Management Shell and enter the following command.

Set-Mailbox -Identity <'UserWithForwardedAddress'> -ForwardingSMTPAdddress $null