Restrict physical access

One of the risks of unauthorized physical access is the ability by an intruder to start the server from a memory stick, CD/DVD or floppy disk and gain access to the Windows file system. Your mission-critical production application and database servers should be physically secured.

Recommendation:

As with any Windows based server, it is recommended to restrict physical access whenever possible.