STIGQter: STIG Summary: Solaris 11 SPARC Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

Groups assigned to users must exist in the /etc/group file.

DISA Rule

SV-216422r603267_rule

Vulnerability Number

V-216422

Group Title

SRG-OS-000480

Rule Version

SOL-11.1-070060

Severity

CAT II

CCI(s)

CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

The root role is required.

Correct or justify any items discovered in the Audit step. Determine if any groups are in passwd but not in group, and work with those users or group owners to determine the best course of action in accordance with site policy.

Check Contents

The root role is required.

Check that groups are configured correctly.

# logins -xo | awk -F: '($3 == "") { print $1 }'

If output is produced, this is a finding.

Vulnerability Number

V-216422

Documentable

False

Rule Version

SOL-11.1-070060

Severity Override Guidance

The root role is required.

Check that groups are configured correctly.

# logins -xo | awk -F: '($3 == "") { print $1 }'

If output is produced, this is a finding.

Check Content Reference

Target Key

4022

Groups assigned to users must exist in the /etc/group file.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments