Description of problem:
Rule logind_session_timeout is misaligned with DISA STIG for RHEL 9 V2R7. We discovered this issue in weekly productization.
The problem is that CaC check finds the setting in the directory /etc/systemd/logind.conf.d at /etc/systemd/logind.conf.d/oscap-idle-sessions.conf but DISA requires it to be present in the /etc/systemd/logind.conf.
SCAP Security Guide Version:
Current upstream master branch as of 2026-03-08 as of HEAD c4ab25f
Operating System Version:
RHEL-9.2.0-updates-20260306.0
RHEL-9.4.0-updates-20260306.1
RHEL-9.6.0-updates-20260306.0
RHEL-9.7.0-updates-20260306.0
Steps to Reproduce:
- /scanning/disa-alignment/oscap
- /scanning/disa-alignment/anaconda
- /scanning/disa-alignment/ansible
Actual Results:
SSG result: pass, DISA result(s): SV-258077r1155659_rule:fail
Expected Results:
SSG result: pass, DISA result(s): SV-258077r1155659_rule:pass
Additional Information/Debugging Steps:
no
Description of problem:
Rule logind_session_timeout is misaligned with DISA STIG for RHEL 9 V2R7. We discovered this issue in weekly productization.
The problem is that CaC check finds the setting in the directory
/etc/systemd/logind.conf.dat/etc/systemd/logind.conf.d/oscap-idle-sessions.confbut DISA requires it to be present in the/etc/systemd/logind.conf.SCAP Security Guide Version:
Current upstream master branch as of 2026-03-08 as of HEAD c4ab25f
Operating System Version:
RHEL-9.2.0-updates-20260306.0
RHEL-9.4.0-updates-20260306.1
RHEL-9.6.0-updates-20260306.0
RHEL-9.7.0-updates-20260306.0
Steps to Reproduce:
Actual Results:
SSG result: pass, DISA result(s): SV-258077r1155659_rule:fail
Expected Results:
SSG result: pass, DISA result(s): SV-258077r1155659_rule:pass
Additional Information/Debugging Steps:
no