How to debug SELinux

Still need help?

The Atlassian Community is here for you.

Ask the community

Overview

This documentation describes how to debug SELinux with respect to Atlassian Applications. SELinux is a Linux kernel security module (Application Firewall), which when placed in Enforcing mode, might prevent Atlassian Applications from starting if not properly configured.

SELinux is commonly found enabled with the "enforcing" mode in the Red Hat, CentOS and Fedora linux distributions. 

Placing SELinux in permissive mode

If you are experiencing problems starting an Atlassian Application then you can temporarily place SELinux in permissive mode to see if Atlassian Application works when SELinux is in that mode. With that, we can narrow down the issue to this security module.

(warning) We understand that for a secure system, having SELinux disabled permanently can be not possible, if that's your case please make sure to re-enable it after the troubleshooting is done.

1 - You can verify if SELinux is enabled in the Operation System running:

getsebool -a

2 - To place SELinux into permissive mode, edit the file /etc/selinux/config and change the line:

SELINUX=enforcing

to:

SELINUX=permissive

3 - And then reboot.

reboot

If the Atlassian Application works after rebooting then we suggest checking the /var/log/audit/audit.log file for "java" entries and consulting the SELinux documentation for how to troubleshoot it.

Last modified on Dec 23, 2022

Was this helpful?

Yes
No
Provide feedback about this article
Powered by Confluence and Scroll Viewport.