Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
WN12-00-000002 | WN12-00-000002 | WN12-00-000002_rule | Medium |
Description |
---|
A system's BIOS or system controller handles the initial startup of a system, and its configuration must be protected from unauthorized modification. When the BIOS or system controller supports the creation of user accounts or passwords, such protections must be used and accounts/passwords only assigned to system administrators. Failure to protect BIOS or system controller settings could result in Denial of Service or compromise of the system resulting from unauthorized configuration changes. |
STIG | Date |
---|---|
Microsoft Windows Server 2012 Member Server Security Technical Implementation Guide | 2013-07-25 |
Check Text ( C-WN12-00-000002_chk ) |
---|
On systems with a BIOS or system controller, verify a supervisor or administrator password is set. If a password is not set, this is a finding. If the BIOS or system controller supports user-level access in addition to supervisor/administrator access, determine whether this access is enabled. If so, this is a finding. |
Fix Text (F-WN12-00-000002_fix) |
---|
Access the system's BIOS or system controller. Set a supervisor/administrator password if one has not been set. Disable a user-level password if one has been set. |