[Freeipa-users] Issues after setup
Jakub Hrozek
jhrozek at redhat.com
Wed Apr 10 18:37:36 UTC 2013
On Wed, Apr 10, 2013 at 02:34:06PM -0400, Shawn wrote:
> [root at freeclient1 sssd]# sestatus
> SELinux status: disabled
> [root at freeclient1 sssd]# ls -ldZ /etc/selinux/
> drwxr-xr-x root root ? /etc/selinux/
> [root at freeclient1 sssd]#
I take it there is no directory /etc/selinux/targeted/logins (or
/etc/selinux/targeted/ for that matter?)
Does mkdir -p /etc/selinux/targeted/logins solve things for you?
>
>
>
> On Wed, Apr 10, 2013 at 2:31 PM, Jakub Hrozek <jhrozek at redhat.com> wrote:
>
> > On Wed, Apr 10, 2013 at 02:27:36PM -0400, Shawn wrote:
> > > (Wed Apr 10 14:22:45 2013) [sssd[pam]] [write_selinux_login_file]
> > (0x0040):
> > > creating the temp file for SELinux data failed.
> > > /etc/selinux/targeted/logins/staajtlQ108(Wed Apr 10 14:22:45 2013)
> > > [sssd[pam]] [pam_reply] (0x0100): blen: 30
> >
> > I think this is the smoking gun.
> >
> > What state is SELinux in? (run sestate)
> > Are there any AVC denials that would indicate the directory is
> > mislabeled?
> >
> > What is the output of:
> > # ls -ldZ /etc/selinux/targeted/ /etc/selinux/targeted/logins
> >
>
>
>
> --
> *- Shawn Taaj*
More information about the Freeipa-users
mailing list