Title

Booting into alternate operating systems is permitted. (Cat II impact)

Discussion

Allowing other operating systems to run on a secure system, can allow users to circumvent security. If more than one operating system is installed on a computer, each must be configured to be compliant with STIG guidance.

Check Content

Open the Control Panel Double-click on the “System” applet. Click on the “Advanced System Settings” link. Click on the “Advanced” tab. Click the Startup and Recovery “Settings” button. If the drop-down listbox in System Startup shows any operating system other than the current Windows OS, this may be a finding. If all additional operating systems are STIG compliant, then this is not a finding.

Fix Text

Configure the system to prevent running non-compliant alternate operating systems.

Additional Identifiers

Rule ID: SV-19250r1_rule

Vulnerability ID: V-1119

Group Title: Booting into Multiple Operating Systems

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.