Check: WN12-GE-000010
Microsoft Windows Server 2012/2012 R2 Domain Controller STIG:
WN12-GE-000010
(in versions v3 r7 through v2 r7)
Title
The system must not boot into multiple operating systems (dual-boot). (Cat II impact)
Discussion
Allowing a system to boot into multiple operating systems (dual-booting) may allow security to be circumvented on a secure system.
Check Content
Verify the local system boots directly into Windows. Open Control Panel. Select "System". Select the "Advanced System Settings" link. Select the "Advanced" tab. Click the "Startup and Recovery" Settings button. If the drop-down list box "Default operating system:" shows any operating system other than Windows Server 2012, this is a finding.
Fix Text
Ensure Windows Server 2012 is the only operating system installed for the system to boot into. Remove alternate operating systems.
Additional Identifiers
Rule ID: SV-226243r794576_rule
Vulnerability ID: V-226243
Group Title: SRG-OS-000480-GPOS-00227
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |