STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide

V-259596

CAT II (Medium)

More than one Edge server must be deployed.

Rule ID

SV-259596r961152_rule

STIG

Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide

Version

V2R2

CCIs

CCI-001094

Discussion

To ensure hostile insiders are unable to easily commit DoS attacks and reduce the effectiveness of mail flow throughout the environment, a second Edge server is deployed to allow for multiple paths of mail flow both internally and externally into the environment. This prevents a single point-of-failure and allows for service to continue in the event of a DoS attack targeting one Edge role.

Check Content

Review the EDSP for current configuration.

On the mailbox server, open a PowerShell prompt and run the following command:

Get-EdgeSubscription

If there is only one subscription on each server, this is a finding.

Fix Text

At a minimum, a second server must be deployed and subscribed to.