The root account must be the only account with GID of 0.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-216201 | SRG-OS-000480 | SOL-11.1-070220 | SV-216201r959010_rule | 2024-11-25 | 3 |
| Description |
|---|
| All accounts with a GID of 0 have root group privileges and must be limited to the group account only. |
| ℹ️ Check |
|---|
| Identify any users with GID of 0. # awk -F: '$4 == 0' /etc/passwd # awk -F: '$3 == 0' /etc/group Confirm the only account with a group id of 0 is root. If the root account is not the only account with GID of 0, this is a finding. |
| ✔️ Fix |
|---|
| The root role is required. Change the default GID of non-root accounts to a valid GID other than 0. |