All TOSS 5 interactive users must have a primary group that exists.

Severity
Group ID
Group Title
Version
Rule ID
Date
STIG Version
mediumV-282490SRG-OS-000104-GPOS-00051TOSS-05-000298SV-282490r1200450_rule2026-04-011

Description

If a user is assigned the Group Identifier (GID) of a group that does not exist on the system, and a group with the GID is subsequently created, the user may have unintended rights to any files associated with the group.

ℹ️ Check

Verify all TOSS 5 interactive users have a valid GID using the following command: $ sudo pwck -qr If the system has any interactive users with duplicate GIDs, this is a finding.

✔️ Fix

Configure the system so all GIDs referenced in "/etc/passwd" are defined in "/etc/group". Edit the file "/etc/passwd" and ensure every user's GID is a valid GID.