STIGQter: STIG Summary: SLES 12 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: SLES 12 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:SV-217189r646737_rule
V-217189
SRG-OS-000480-GPOS-00227
SLES-12-010910
CAT II
10
Copy the PAM configuration files to their static locations and remove the SUSE operating system soft links for the PAM configuration files with the following command:
> sudo sh -c 'for X in /etc/pam.d/common-*-pc; do cp -ivp --remove-destination $X ${X:0:-3}; done'
Additional information on the configuration of multifactor authentication on the SUSE operating system can be found at https://www.suse.com/communities/blog/configuring-smart-card-authentication-suse-linux-enterprise/.
Verify the SUSE operating system is configured to not overwrite Pluggable Authentication Modules (PAM) configuration on package changes.
Check that soft links between PAM configuration files are removed with the following command:
> find /etc/pam.d/ -type l -iname "common-*"
If any results are returned, this is a finding.
V-217189
False
SLES-12-010910
Verify the SUSE operating system is configured to not overwrite Pluggable Authentication Modules (PAM) configuration on package changes.
Check that soft links between PAM configuration files are removed with the following command:
> find /etc/pam.d/ -type l -iname "common-*"
If any results are returned, this is a finding.
M
4033