diff --git a/tasks/section_2/cis_2.4.1.x.yml b/tasks/section_2/cis_2.4.1.x.yml
index a81990b..99bb0d4 100644
--- a/tasks/section_2/cis_2.4.1.x.yml
+++ b/tasks/section_2/cis_2.4.1.x.yml
@@ -154,5 +154,5 @@
       ansible.builtin.file:
         path: /etc/cron.allow
         owner: root
-        group: root
+        group: '{{ ("crontab" in discovered_cron_allow_status.stat.gr_name ) | ternary(omit,"root") }}'
         mode: 'u-x,g-wx,o-rwx'