[Freeipa-users] Issues after setup
Shawn
taaj.shawn at gmail.com
Wed Apr 10 18:49:46 UTC 2013
Yep, sure does. Thanks much.
If selinux is disabled, why does it care?
On Wed, Apr 10, 2013 at 2:37 PM, Jakub Hrozek <jhrozek at redhat.com> wrote:
> On Wed, Apr 10, 2013 at 02:34:06PM -0400, Shawn wrote:
> > [root at freeclient1 sssd]# sestatus
> > SELinux status: disabled
> > [root at freeclient1 sssd]# ls -ldZ /etc/selinux/
> > drwxr-xr-x root root ? /etc/selinux/
> > [root at freeclient1 sssd]#
>
> I take it there is no directory /etc/selinux/targeted/logins (or
> /etc/selinux/targeted/ for that matter?)
>
> Does mkdir -p /etc/selinux/targeted/logins solve things for you?
>
> >
> >
> >
> > On Wed, Apr 10, 2013 at 2:31 PM, Jakub Hrozek <jhrozek at redhat.com>
> wrote:
> >
> > > On Wed, Apr 10, 2013 at 02:27:36PM -0400, Shawn wrote:
> > > > (Wed Apr 10 14:22:45 2013) [sssd[pam]] [write_selinux_login_file]
> > > (0x0040):
> > > > creating the temp file for SELinux data failed.
> > > > /etc/selinux/targeted/logins/staajtlQ108(Wed Apr 10 14:22:45 2013)
> > > > [sssd[pam]] [pam_reply] (0x0100): blen: 30
> > >
> > > I think this is the smoking gun.
> > >
> > > What state is SELinux in? (run sestate)
> > > Are there any AVC denials that would indicate the directory is
> > > mislabeled?
> > >
> > > What is the output of:
> > > # ls -ldZ /etc/selinux/targeted/ /etc/selinux/targeted/logins
> > >
> >
> >
> >
> > --
> > *- Shawn Taaj*
>
--
*- Shawn Taaj*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20130410/9d340350/attachment.htm>
More information about the Freeipa-users
mailing list