Microsoft Windows Server 2012/2012 R2 Member Server STIG:
(in versions v3 r5 through v2 r7)
Server systems must be located in a controlled access area, accessible only to authorized personnel. (Cat II impact)
Inadequate physical protection can undermine all other security precautions utilized to protect the system. This can jeopardize the confidentiality, availability, and integrity of the system. Physical security is the first line of protection of any system.
Verify servers are located in controlled access areas that are accessible only to authorized personnel. If systems are not adequately protected, this is a finding.
Ensure servers are located in secure, access-controlled areas.
Rule ID: SV-225239r569185_rule
Vulnerability ID: V-225239
Group Title: SRG-OS-000480-GPOS-00229
The organization implements the security configuration settings.