AnsweredAssumed Answered

How can I make  UDC(User Defined Control) to bypass check for system defined shells i.e. /nologin or /shutdown in  Policy check : CID:3588 - Current list of 'Invalid Shells' resulting from a comparison of the contents of the '/etc/passwd' and '/etc/shells

Question asked by Vikas Kataria on Jan 26, 2019

How can I make UDC(User Defined Control) to bypass check for system defined shells i.e. /nologin or /shutdown in 

 

Policy check :
CID:3588 - Current list of 'Invalid Shells' resulting from a comparison of the contents of the '/etc/passwd' and '/etc/shells'
In other words I don't want to see this fail policy for a shell that does not contain System defined shells(/nologin and others)

 

The following List String value(s) X lists Username:Shell of those shells defined in /etc/passwd and NOT listed in /etc/shells.
Last updated:xx/xx/2xxx at 1x:5x:x0 (GMT+0530)
bin:/sbin/nologin
daemon:/sbin/nologin
adm:/sbin/nologin
lp:/sbin/nologin
Thanks in advance !

Outcomes