UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Users must not be allowed to run virtual machines in Hyper-V on the system.


Overview

Finding ID Version Rule ID IA Controls Severity
V-63365 WN10-00-000080 SV-77855r1_rule Medium
Description
Allowing other operating systems to run on a secure system may allow users to circumvent security. Hyper-V is used by the Credential Guard feature on Windows 10. Preventing users from being assigned to the Hyper-V Administrators group will prevent them from accessing or creating virtual machines on the system.
STIG Date
Windows 10 Security Technical Implementation Guide 2017-02-21

Details

Check Text ( C-64105r1_chk )
Run "Computer Management".
Navigate to System Tools >> Local Users and Groups >> Groups.
Double click on "Hyper-V Administrators".

If any groups or user accounts are listed in "Members:", this is a finding.
Fix Text (F-69285r1_fix)
Remove any groups or users from the "Hyper-V Administrators" group.