3.10 Set 'Enable S/MIME for OWA 2010' to 'True'

Information

You can enable this setting to allow users to download the S/MIME control to read and create signed and encrypted messages.

Rationale:

S/MIME uses digital signatures and encryption to protect against several classes of attacks including eavesdropping, impersonation, and tampering.

Solution

To implement the recommended state, execute the following PowerShell cmdlet:

Set-OWAVirtualDirectory -identity 'owa (Default Web Site)' -SMimeEnabled $true

See Also

https://workbench.cisecurity.org/files/1514

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-13

Plugin: Windows

Control ID: b74f8ae7f44f0f40dca0eb0c6dd89f95cb4842ec530fcc4f0d2a07978fe475e8