STIGhubSTIGhub
STIGsSearchCompareAbout

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • VPAT
  • DISA STIG Library
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Amazon Linux 2023 Security Technical Implementation Guide

V-274023

CAT II (Medium)

Amazon Linux 2023 chronyd service must be enabled.

Rule ID

SV-274023r1120057_rule

STIG

Amazon Linux 2023 Security Technical Implementation Guide

Version

V1R3

CCIs

CCI-004923

Discussion

Inaccurate time stamps make it more difficult to correlate events and can lead to an inaccurate analysis. Determining the correct time a particular event occurred on a system is critical when conducting forensic analysis and investigating system events. Sources outside the configured acceptable allowance (drift) may be inaccurate.

Check Content

Verify Amazon Linux 2023 has the chronyd service set to active with the following command:

$ systemctl is-active chronyd
active 

If the chronyd service is not active, this is a finding.

Fix Text

Configure Amazon Linux 2023 to have the chronyd service set to active with the following command:

$ sudo systemctl enable --now chronyd