To ensure accountability and prevent unauthenticated access, groups must be identified uniquely to prevent potential misuse and compromise of the system.
Check
Verify RHEL 10 contains no duplicate GIDs for interactive users with the following command:
$ cut -d : -f 3 /etc/group | uniq -d
If the system has duplicate GIDs, this is a finding.
Fix
Configure RHEL 10 to contain no duplicate GIDs for interactive users.
Edit the file "/etc/group", and provide each group that has a duplicate GID with a unique GID.