Microsoft Windows 10: Shut down the system

This security setting determines if a user who is logged on locally to a device can shut down Windows. Shutting down domain controllers makes them unavailable to perform functions such as processing logon requests, processing Group Policy settings, and answering Lightweight Directory Access Protocol (LDAP) queries. Shutting down domain controllers that have been assigned operations master roles (also known as flexible single master operations or FSMO roles) can disable key domain functionality. The Shut down the system user right is required to enable hibernation support, to set the power management settings, and to cancel a shutdown.