OL 9 groups must have unique Group ID (GID).

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-271835	OL09-00-003006	SV-271835r1092217_rule		Medium

Description

To ensure accountability and prevent unauthenticated access, groups must be identified uniquely to prevent potential misuse and compromise of the system.

STIG	Date
Oracle Linux 9 Security Technical Implementation Guide	2025-05-08

Details

Check Text (C-75885r1092215_chk)

Verify that OL 9 contains no duplicate GIDs for interactive users with the following command:

$ cut -d : -f 3 /etc/group | uniq -d

If the system has duplicate GIDs, this is a finding.

Fix Text (F-75792r1092216_fix)

Edit the file "/etc/group" and provide each group that has a duplicate GID with a unique GID.