We help IT Professionals succeed at work.

harden EXCH2013

185 Views
Last Modified: 2017-04-04
Hi Experts,

I have a new EXCH2013 installation.
Now I have to harden this server because it has direct connectivity to outside users (OWA)
I have checked my connection, with www.ssllabs.com
This connection is terrible and has a F rating.

How to bring it to A or A+ ?
SSL3.0 is already disabled but what about the rest ?
Comment
Watch Question

Senior Engineer
CERTIFIED EXPERT
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
Tom CieslikIT Superintendent
CERTIFIED EXPERT
Distinguished Expert 2017

Commented:
The question is what is the rest ?
Without seeing your report it's hard to say what else you can do.
 Certificate?
DKIM ?
etc..
Eprs_AdminSystem Architect

Author

Commented:
Here is my Rating, see the picture.
This is the rating of the server with OWA.

F Rating
Eprs_AdminSystem Architect

Author

Commented:
...and to fix insecure Renegotiation on EXCH2013 ?
David Johnson, CDSimple Geek from the '70s
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
Eprs_AdminSystem Architect

Author

Commented:
ok I will check this tool
In the meantime I have set some configuration on my firewall for the specific virtual IP.