Check: WN11-CC-000252
Microsoft Windows 11 STIG:
WN11-CC-000252
(in versions v2 r2 through v1 r1)
Title
Windows 11 must be configured to disable Windows Game Recording and Broadcasting. (Cat II impact)
Discussion
Windows Game Recording and Broadcasting is intended for use with games; however, it could potentially record screen shots of other applications and expose sensitive data. Disabling the feature will prevent this from occurring.
Check Content
This is NA for Windows 11 LTSC. If the following registry value does not exist or is not configured as specified, this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Registry Path: \SOFTWARE\Policies\Microsoft\Windows\GameDVR\ Value Name: AllowGameDVR Type: REG_DWORD Value: 0x00000000 (0)
Fix Text
Configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Windows Game Recording and Broadcasting >> "Enables or disables Windows Game Recording and Broadcasting" to "Disabled".
Additional Identifiers
Rule ID: SV-253399r958478_rule
Vulnerability ID: V-253399
Group Title: SRG-OS-000095-GPOS-00049
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000381 |
Configure the system to provide only organization-defined mission essential capabilities. |
Controls
Number | Title |
---|---|
CM-7 |
Least Functionality |