Grid Guides

Explore How System On Grid Can Work For You

How to enable or disable SELinux


Introduction

SELinux is an acronym for Security-enhanced Linux. It is a security feature of the Linux kernel. It is designed to protect the server against misconfigurations and/or compromised daemons.

Prerequisites

  • Running Orbit

Enabling SELinux - Enforcing Mode

  1. First open the config file in 'etc/selinux/config' using a text editor. Modify the 'SELINUX' value to permissive like the image below.

    SELinux Permissive
  2. After enabling SELinux, reboot your system and SELinux will start indexing your files in Permissive Mode. You can check if any actions were denied by SELinux by checking 'var/log/messages'. Once you have everything sorted out, you can switch to enforcing mode.

  3. First open the config file in 'etc/selinux/config' using a text editor. Modify the 'SELINUX' value to enforcing like the image below.

    SELinux Enforcing
  4. After enabling SELinux, reboot your system. After reboot we can confirm that SELinux was successfully disabled by running 'getenforce' which should return disabled like the following image.

    SELinux Enforcing Confirm

Enabling SELinux - Permissive Mode

  1. First open the config file in 'etc/selinux/config' using a text editor. Modify the 'SELINUX' value to permissive like the image below.

    SELinux Permissive
  2. After enabling SELinux, reboot your system and you should be good to go.

Disabling SELinux

  1. First open the config file in 'etc/selinux/config' using a text editor. Modify the 'SELINUX' value from enabled to disabled like the image below.

    SELinux Disabled
  2. After disabling SELinux, reboot your system. After reboot we can confirm that SELinux was successfully disabled by running 'getenforce' which should return disabled like the following image.

    SELinux Disabled Confirm