Unnecessary service packages must not be installed to decrease the attack surface of the system. A graphical environment is unnecessary for certain types of systems including a virtualization hypervisor.
Check
Verify RHEL 10 does not have the "gdm" package installed with the following command:
$ sudo dnf list --installed gdm Error: No matching Packages to list
If the "gdm" package is installed and the need for a GUI interface has not been documented with the information system security officer, this is a finding.
Fix
Configure RHEL 10 to not have the "gdm" package installed with the following command: