RHEL 9 must require users to reauthenticate for privilege escalation.

An XCCDF Rule

Details
Profiles

Description

Without reauthentication, users may access resources or perform tasks for which they do not have authorization. When operating systems provide the capability to escalate a functional capability, it is critical that the user reauthenticate. Satisfies: SRG-OS-000373-GPOS-00156, SRG-OS-000373-GPOS-00157, SRG-OS-000373-GPOS-00158

ID: SV-258086r1050789_rule
Version: RHEL-09-432025
Severity: Medium
References: CCI-002038 CCI-004895
Updated: about 2 months ago

Remediation Templates

Configure RHEL 9 to not allow users to execute privileged actions without authenticating.

Remove any occurrence of "!authenticate" found in "/etc/sudoers" file or files in the "/etc/sudoers.d" directory.

$ sudo sed -i '/\!authenticate/ s/^/# /g' /etc/sudoers /etc/sudoers.d/*

RHEL 9 must require users to reauthenticate for privilege escalation.

Description

Remediation Templates

A Manual Procedure