The SELinux security policy can prevent a successful installation
and use of the IBM® Counter Fraud
Management client
tools. Ensure that the SELinux setting is configured for either permissive,
or disabled to prevent issues.
About this task
You must perform this task on each ICFM server in
your environment.
Procedure
To configure SELinux:
- Open the /etc/selinux/config file
and edit the SELINUX entry:
SELINUX=permissive
- Restart the server:
reboot
Tip: You can use the
setenforce 0 command
to set permissive mode without restarting the server; however, Step
1 is still required to ensure
that the SELinux setting is correct the next time the server is restarted.
- Verify the SELinux setting:
sestatus
A message similar to the following is
returned:
SELinux status: enabled
SELinuxfs mount: /selinux
Current mode: permissive
Mode from config file: permissive
Policy version: 2
Policy from config file: policy1
If SELinux
status is set to enabled, then Current
Mode must be set to permissive as in this example, or else SELinux
status must be set to disabled.
- Repeat this procedure on the other servers in your topology.
What to do next
After you complete the server installation, do not change
the SELinux setting. Server communication with the client tools requires
the permissive or disabled setting.