BSI-100-2: S 4.13: Careful allocation of identifiers: Every GID must be valid

Information

Every log-in name, every user ID (UID) and every group ID (GID) must be unique. Even after deletion of a user or a group, the log-in name and the UID or GID should not be reassigned for a certain period of time. On networked systems, steps must be taken to ensure that it is not possible for the same user names and IDs to be assigned elsewhere on the system more than once.

Safeguard Catalogues: S 4: Hardware and software

S 4.13: Careful allocation of identifiers

See Also

https://www.bsi.bund.de/cae/servlet/contentblob/471430/publicationFile/28223/standard_100-2_e_pdf.pdf

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-2c.

Plugin: Unix

Control ID: 43a84e887501fe4d018b0c06eb79de582f9f78da334cad613271a0187c6b262f