OL 9 must enable the chronyd service.

STIG ID: OL09-00-000311  |  SRG: SRG-OS-000355-GPOS-00143 |  Severity: medium |  CCI: CCI-004923 |  Vulnerability Id: V-271502

Vulnerability Discussion

Inaccurate time stamps make it more difficult to correlate events and can lead to an inaccurate analysis. Determining the correct time a particular event occurred on a system is critical when conducting forensic analysis and investigating system events. Sources outside the configured acceptable allowance (drift) may be inaccurate.

Synchronizing internal information system clocks provides uniformity of time stamps for information systems with multiple system clocks and systems connected over a network.

Check

Verify that OL 9 chronyd service is set to active with the following command:

$ systemctl is-active chronyd
active

If the chronyd service is not active, this is a finding.

Fix

Enable the chronyd service with the following command:

$ sudo systemctl enable --now chronyd
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.