SV-226406r603265_rule
V-226406
SRG-OS-000470
GEN000000-SOL00040
CAT II
10
Edit the audit_user file and remove specific user configurations differing from the global audit settings.
Perform:
# more /etc/security/audit_user
If /etc/security/audit_user has entries other than root, ensure the users defined are audited with the same flags as all users as defined in /etc/security/audit_control file.
V-226406
False
GEN000000-SOL00040
Perform:
# more /etc/security/audit_user
If /etc/security/audit_user has entries other than root, ensure the users defined are audited with the same flags as all users as defined in /etc/security/audit_control file.
M
4060