SELinux をデバッグする方法
概要
This documentation describes how to debug SELinux with respect to Atlassian Applications. SELinux is a Linux kernel security module (Application Firewall), which when placed in Enforcing mode, might prevent Atlassian Applications from starting if not properly configured.
SELinux is commonly found enabled with the "enforcing" mode in the Red Hat, CentOS and Fedora linux distributions.
Placing SELinux in permissive mode
If you are experiencing problems starting an Atlassian Application then you can temporarily place SELinux in permissive mode to see if Atlassian Application works when SELinux is in that mode. With that, we can narrow down the issue to this security module.
We understand that for a secure system, having SELinux disabled permanently can be not possible, if that's your case please make sure to re-enable it after the troubleshooting is done.
1 - You can verify if SELinux is enabled in the Operation System running:
getsebool -a
2 - To place SELinux into permissive mode, edit the file /etc/selinux/config and change the line:
SELINUX=enforcing
to:
SELINUX=permissive
3 - And then reboot.
reboot
If the Atlassian Application works after rebooting then we suggest checking the /var/log/audit/audit.log file for "java" entries and consulting the SELinux documentation for how to troubleshoot it.