UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Duplicate Group IDs (GIDs) must not exist for multiple groups.


Overview

Finding ID Version Rule ID IA Controls Severity
V-216428 SOL-11.1-070120 SV-216428r603267_rule Medium
Description
User groups must be assigned unique GIDs for accountability and to ensure appropriate access protections.
STIG Date
Solaris 11 SPARC Security Technical Implementation Guide 2020-12-08

Details

Check Text ( C-17664r371372_chk )
The root role is required.

Check that group IDs are unique.

# getent group | cut -f3 -d":" | sort -n | uniq -c |\
while read x ; do
[ -z "${x}" ] && break
set - $x
if [ $1 -gt 1 ]; then
grps=`getent group | nawk -F: '($3 == n) { print $1
}' n=$2 | xargs`
echo "Duplicate GID ($2): ${grps}"
fi
done

If output is produced, this is a finding.
Fix Text (F-17662r371373_fix)
The root role is required.

Work with each respective group owner to remediate this issue and ensure that the group ownership of their files are set to an appropriate value.