Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Users must not be allowed to run virtual machines in Hyper-V on the system.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-63365 | WN10-00-000080 | SV-77855r1_rule | Medium |
| Description |
|---|
| Allowing other operating systems to run on a secure system may allow users to circumvent security. Hyper-V is used by the Credential Guard feature on Windows 10. Preventing users from being assigned to the Hyper-V Administrators group will prevent them from accessing or creating virtual machines on the system. |
| STIG | Date |
|---|---|
| Windows 10 Security Technical Implementation Guide | 2017-02-21 |
Details
| Check Text ( C-64105r1_chk ) |
|---|
| Run "Computer Management". Navigate to System Tools >> Local Users and Groups >> Groups. Double click on "Hyper-V Administrators". If any groups or user accounts are listed in "Members:", this is a finding. |
| Fix Text (F-69285r1_fix) |
|---|
| Remove any groups or users from the "Hyper-V Administrators" group. |