Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-18724 | EMG2-344 Exch2K3 | SV-20391r1_rule | ECSC-1 | Medium |
Description |
---|
Backup and recovery procedures are an important part of overall system availability and integrity. Complete backups reduce the chance of accidental deletion of important information, and ensure that complete recoveries are possible. It is not uncommon for users to receive and delete documents in the scope of a single backup cycle. This setting ensures that at least one backup has been run on the folder store before the message physically disappears. By enabling this setting, all messages written to recipients who have accounts on this store will reside in backups even if they have been deleted by the user before the backup has run. |
STIG | Date |
---|---|
Microsoft Exchange Server 2003 | 2014-08-19 |
Check Text ( C-22445r1_chk ) |
---|
Valiate that Public Folders are retained until Backups are run. Procedure: Exchange System manager >>Administrative Groups >> [administrative group] >> Servers >> [server name]>> [storage group] >> Public Folder store [server name] >> Properties >> Limits tab >> Deletion settings The “Do not permanently delete Public Folders until the store has been backed up” should be selected. Criteria: If “Do not permanently delete Public Folders until the store has been backed up” is selected, this is not a finding. |
Fix Text (F-19373r1_fix) |
---|
Configure Public Folders for Backups. Procedure: Exchange System manager >>Administrative Groups >> [administrative group] >> Servers >> [server name]>> [storage group] >> Public Folder store [server name] >> Properties >> Limits tab >> Deletion settings Select “Do not permanently delete mailboxes and items until the store has been backed up”. |