U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

  1. Checklist Repository

Microsoft Windows Server 2025 Ver 1, Rel 1 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
Microsoft Windows server 2025 cpe:/o:microsoft:windows_server_2025:- (View CVEs)

Checklist Highlights

Checklist Name:
Microsoft Windows Server 2025
Checklist ID:
1324
Version:
Ver 1, Rel 1
Type:
Compliance
Review Status:
Candidate
Authority:
Governmental Authority: Defense Information Systems Agency
Original Publication Date:
03/03/2026

Checklist Summary:

The Windows Server 2025 STIG includes requirements for both domain controllers and member servers/standalone systems. Requirements specific to domain controllers have DC as the second component of the STIG IDs. Requirements specific to member servers have MS as the second component of the STIG IDs. All other requirements apply to all systems.

Checklist Role:

  • Server

Known Issues:

Not provided.

Target Audience:

Parties within the DOD and federal governments computing environments can obtain the applicable STIG from the DOD Cyber Exchange website at https://cyber.mil/. This site contains the latest copies of STIGs, SRGs, and other related security information. Those without a Common Access Card (CAC) that has DOD Certificates can obtain the STIG from https://public.cyber.mil/.

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not provided.

Regulatory Compliance:

DoD Instruction (DoDI) 8500.01

Comments/Warnings/Miscellaneous:

Not provided.

Disclaimer:

Not provided.

Product Support:

Not provided.

Point of Contact:

[email protected]

Sponsor:

Not provided.

Licensing:

Not provided.

Change History: 



					

						Dependency/Requirements:
					

					

						
							

								URL
								Description
							

						
						
							
						
					


					

						References:
					


					

						
							

								Reference URL
								Description
							

						
						
							
						
					


					

						NIST checklist record last modified on 03/03/2026
					

					   

							

							* This checklist is still undergoing review for inclusion into the NCP.