Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat Enterprise Linux 9
System Settings
Account and Access Control
Protect Accounts by Restricting Password-Based Login
Restrict Root Logins
Ensure the Group Used by pam_wheel.so Module Exists on System and is Empty
Ensure the Group Used by pam_wheel.so Module Exists on System and is Empty
An XCCDF Rule
Details
Profiles
Prose
Ensure the Group Used by pam_wheel.so Module Exists on System and is Empty
Medium Severity
Ensure that the group
referenced by
var_pam_wheel_group_for_su
variable and used as value for the
pam_wheel.so
group
option exists and has no members. This empty group used by
pam_wheel.so
in
/etc/pam.d/su
ensures that no user can run commands with altered privileges through the
su
command.