Check: RHEL-09-215010
RHEL 9 STIG:
RHEL-09-215010
(in version v2 r3)
Title
RHEL 9 subscription-manager package must be installed. (Cat II impact)
Discussion
The Red Hat Subscription Manager application manages software subscriptions and software repositories for installed software products on the local system. It communicates with backend servers, such as the Red Hat Customer Portal or an on-premise instance of Subscription Asset Manager, to register the local system and grant access to software resources determined by the subscription entitlement.
Check Content
Verify that RHEL 9 subscription-manager package is installed with the following command: $ dnf list --installed subscription-manager Example output: subscription-manager.x86_64 1.29.26-3.el9_0 If the "subscription-manager" package is not installed, this is a finding.
Fix Text
The subscription-manager package can be installed with the following command: $ sudo dnf install subscription-manager
Additional Identifiers
Rule ID: SV-257825r1044888_rule
Vulnerability ID: V-257825
Group Title: SRG-OS-000366-GPOS-00153
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-001749 |
The information system prevents the installation of organization-defined software components without verification the software component has been digitally signed using a certificate that is recognized and approved by the organization. |
| CCI-003992 |
Prevent the installation of organization-defined software and firmware components without verification that the component has been digitally signed using a certificate that is recognized and approved by the organization. |
Controls
| Number | Title |
|---|---|
| CM-5(3) |
Signed Components |