STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Red Hat Enterprise Linux 10 Security Technical Implementation Guide

V-281297

CAT II (Medium)

RHEL 10 must not default to the graphical display manager unless approved.

Rule ID

SV-281297r1166843_rule

STIG

Red Hat Enterprise Linux 10 Security Technical Implementation Guide

Version

V1R1

CCIs

CCI-000381

Discussion

Unnecessary service packages must not be installed to decrease the attack surface of the system. Graphical display managers have a long history of security vulnerabilities and must not be used unless approved and documented.

Check Content

Verify RHEL 10 is configured to boot to the command line with the following command:

$ systemctl get-default
multi-user.target

If the system default target is not set to "multi-user.target", and the information system security officer lacks a documented requirement for a graphical user interface, this is a finding.

Fix Text

Configure RHEL 10 to boot to the command line by setting the default target to "multi-user" with the following command:

$ sudo systemctl set-default multi-user.target