Navigate

Check: WN12-GE-000010

Microsoft Windows Server 2012/2012 R2 Domain Controller STIG: WN12-GE-000010 (in versions v3 r7 through v2 r7)

Title

The system must not boot into multiple operating systems (dual-boot). (Cat II impact)

Discussion

Allowing a system to boot into multiple operating systems (dual-booting) may allow security to be circumvented on a secure system.

Check Content

Verify the local system boots directly into Windows. Open Control Panel. Select "System". Select the "Advanced System Settings" link. Select the "Advanced" tab. Click the "Startup and Recovery" Settings button. If the drop-down list box "Default operating system:" shows any operating system other than Windows Server 2012, this is a finding.

Fix Text

Ensure Windows Server 2012 is the only operating system installed for the system to boot into. Remove alternate operating systems.

Additional Identifiers

Rule ID: SV-226243r794576_rule

Vulnerability ID: V-226243

Group Title: SRG-OS-000480-GPOS-00227

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000366	The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-6	Configuration Settings