Windows Server 2025 must prohibit the use or connection of unauthorized hardware components.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-277983 | WN25-00-000002 | SV-277983r1180655_rule | CCI-003959 | medium |
| Description | ||||
| Hardware components provide the foundation for organizational systems and the platform for the execution of authorized software programs. Managing the inventory of hardware components and controlling which hardware components are permitted to be installed or connected to organizational systems is essential to provide adequate security. | ||||
| STIG | Date | |||
| Microsoft Windows Server 2025 Security Technical Implementation Guide | 2026-02-20 | |||
Details
Check Text (C-277983r1180655_chk)
Verify the operating system is configured to prohibit the use or connection of unauthorized hardware components.
If the operating system is using undocumented or unapproved hardware, this is a finding.
Fix Text (F-82418r1180654_fix)
Configure the operating system to prohibit the use or connection of unauthorized hardware components. Remove any hardware that is not documented or not approved by the information system security officer (ISSO) or information system security manager (ISSM).