Windows Server 2025 must not have Bluetooth enabled unless required by the organization.

STIG ID: WN25-00-000333  |  SRG: SRG-OS-000096-GPOS-00050 |  Severity: medium (CAT II)  |  CCI: CCI-000382 |  Vulnerability Id: V-278018

Vulnerability Discussion

Unnecessary applications and/or services such as Bluetooth could allow an attacker to connect with intentions to take over or disrupt the system.

Check

In the Windows search bar, type "Services". In the Services "Name" column look for the "Bluetooth Support Service". If this is set to "automatic", this is a finding.

Fix

Validate the site documentation to ensure the approval of use for Wi-Fi server connections. If the connection has not been approved, type "Services" in the Windows search bar. In the Services "Name " column, look for the "Bluetooth Support Service" and set this to "Disabled". Any Bluetooth devices listed or in use must be documented and approved by the information system security officer (ISSO) or authorizing official (AO).
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.