EX19-ED-000198 The Exchange local machine policy must require signed scripts.

Information

Scripts, especially those downloaded from untrusted locations, often provide a way for attackers to infiltrate a system. By setting machine policy to prevent unauthorized script executions, unanticipated system impacts can be avoided.

Solution

Open the Exchange Management Shell and enter the following command:

Set-ExecutionPolicy RemoteSigned

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Exchange_2019_Y24M07_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7(5)(b), CAT|II, CCI|CCI-003938, Rule-ID|SV-259634r986141_rule, STIG-ID|EX19-ED-000198, Vuln-ID|V-259634

Plugin: Windows

Control ID: ab737629083e49236ed888253b8e9c3981d872a1fb22136835e97845e03108d0