Title

RHEL 9 chronyd service must be enabled. (Cat II impact)

Discussion

Inaccurate time stamps make it more difficult to correlate events and can lead to an inaccurate analysis. Determining the correct time a particular event occurred on a system is critical when conducting forensic analysis and investigating system events. Sources outside the configured acceptable allowance (drift) may be inaccurate. Synchronizing internal information system clocks provides uniformity of time stamps for information systems with multiple system clocks and systems connected over a network.

Check Content

Verify the chronyd service is active with the following command: $ systemctl is-active chronyd active If the chronyd service is not active, this is a finding.

Fix Text

To enable the chronyd service run the following command: $ sudo systemctl enable --now chronyd

Additional Identifiers

Rule ID: SV-257944r925819_rule

Vulnerability ID: V-257944

Group Title: SRG-OS-000355-GPOS-00143

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.