Status: OUT
RHEL 9 enforcement is both deeply layered and continuously observable: the kernel-to-session enforcement chain (hardened kernel runtime through pre-auth/post-auth access control) operates under authenticated observable security operations (identity-governed access with operational visibility), meaning every enforcement layer from boot parameters through SELinux to user sessions is simultaneously enforced, identity-attributed, and audit-logged.