diff --git a/scanners/access-and-control/1.40-ensure-access-to-the-su-command-is-restricted.sh b/scanners/access-and-control/1.40-ensure-access-to-the-su-command-is-restricted.sh
index cb5614d7fc22fc116219d2bde3ef81b4e76cd26c..701f97a522a59a52609c1977595499541ab7eb59 100644
--- a/scanners/access-and-control/1.40-ensure-access-to-the-su-command-is-restricted.sh
+++ b/scanners/access-and-control/1.40-ensure-access-to-the-su-command-is-restricted.sh
@@ -1,9 +1,9 @@
 result=false
 
-grep -Eiq "^\s*auth\s+required\s+pam_wheel.so(\s+\S+)*\s+use_uid(\s+\S+)*\s*(\s+#.*)?$" /etc/pam.d/su && grep -Eiq "^wheel:x:10:$" /etc/group && result=true
+grep -Eiq "^\s*auth\s+required\s+pam_wheel.so(\s+\S+)*\s+use_uid(\s+\S+)*\s*(\s+#.*)?$" /etc/pam.d/su && grep -Eiq "^wheel:x:10:" /etc/group && result=true
 
 if [[ $result == true ]]; then
     echo "pass"
 else
     echo "fail"
-fi
\ No newline at end of file
+fi