An error occurred:

Check: RHEL-09-611175

RHEL 9 STIG: RHEL-09-611175 (in version v2 r3)

Title

RHEL 9 must have the pcsc-lite package installed. (Cat II impact)

Discussion

The pcsc-lite package must be installed if it is to be available for multifactor authentication using smart cards.

Check Content

Note: If the system administrator (SA) demonstrates the use of an approved alternate multifactor authentication method, this requirement is Not Applicable. Verify that RHEL 9 has the pcsc-lite package installed with the following command: $ dnf list --installed pcsc-lite Example output: pcsc-lite.x86_64 1.9.4-1.el9 If the "pcsc-lite" package is not installed, this is a finding.

Fix Text

The pcsc-lite package can be installed with the following command: $ sudo dnf install pcsc-lite

Additional Identifiers

Rule ID: SV-258124r1045250_rule

Vulnerability ID: V-258124

Group Title: SRG-OS-000375-GPOS-00160

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001948

The information system implements multifactor authentication for remote access to privileged accounts such that one of the factors is provided by a device separate from the system gaining access.
CCI-004046

Implement multi-factor authentication for local; network; and/or remote access to privileged accounts; and/or non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
IA-2(11)

Remote Access - Separate Device