The pcscd service on RHEL 9 must be active.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-258125 | SRG-OS-000375-GPOS-00160 | RHEL-09-611180 | SV-258125r1045253_rule | 2025-05-14 | 2 |
| Description |
|---|
| The information system ensures that even if the information system is compromised, that compromise will not affect credentials stored on the authentication device. The daemon program for pcsc-lite and the MuscleCard framework is pcscd. It is a resource manager that coordinates communications with smart card readers and smart cards and cryptographic tokens that are connected to the system. |
| ℹ️ Check |
|---|
| Verify that the "pcscd" socket is active with the following command: $ systemctl is-active pcscd.socket active If the pcscd socket is not active, this is a finding. |
| ✔️ Fix |
|---|
| To enable the pcscd socket, run the following command: $ sudo systemctl enable --now pcscd.socket |