An error occurred:

Check: 5.274

Windows 7 STIG: 5.274 (in versions v1 r32 through v1 r25)

Title

Prevent Windows Update for device driver search (Cat III impact)

Discussion

This setting will prevent from searching Windows Update for device drivers.

Check Content

If the following registry value doesn’t exist or is not configured as specified, this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Subkey: \Software\Policies\Microsoft\Windows\DriverSearching\ Value Name: SearchOrderConfig Type: REG_DWORD Value: 0

Fix Text

Configure the policy value for Computer Configuration -> Administrative Templates -> System -> Device Installation -> “Specify Search Order for device driver source locations” to “Enabled: Do not search Windows Update”.

Additional Identifiers

Rule ID: SV-25291r1_rule

Vulnerability ID: V-21965

Group Title: Prevent Windows Update for device driver search

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001812

The information system prohibits user installation of software without explicit privileged status.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
CM-11(2)

Prohibit Installation Without Privileged Status