Rule ID
SV-258061r958482_rule
Version
V2R8
CCIs
To ensure accountability and prevent unauthenticated access, groups must be identified uniquely to prevent potential misuse and compromise of the system.
Verify that RHEL 9 contains no duplicate GIDs for interactive users with the following command: $ cut -d : -f 3 /etc/group | uniq -d If the system has duplicate GIDs, this is a finding.
Edit the file "/etc/group" and provide each group that has a duplicate GID with a unique GID.