[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: [OT] SELinux woes

On 01/17/2013 07:11 AM, Ori Bani wrote:

Trying to switch to slapd.conf instead of dynamic configuration in
order to test the back-sql backend I ran into a problem with SELinux
that I do not understand.

The startup fails with the error:

/etc/openldap/slapd.conf: line 27: invalid path: Permission denied

They probably have the wrong labels since you created new directories. So SELinux does what it then should do: block. Did you do a restorecon on the new directories?

# restorecon -v -F -R /etc/openldap
# restorecon -v -F -R /var/lib/ldap

The reason that SELinux blocks something should show up as an AVC in /var/log/audit/auditd.log.