.Support for SELinux has been added
With this release, the SELinux policy for Red Hat Ceph Storage has been added. SELinux provides another security layer by enforcing Mandatory Access Control (MAC) mechanism over all processes. To learn more about SELinux, see the https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/SELinux_Users_and_Administrators_Guide/index.html[SELinux User's and Administrator's Guide] for Red Hat Enterprise Linux 7.
SELinux support for Ceph is not enabled by default. To use it, install the `ceph-selinux` package. For detailed information about this process, see the https://access.redhat.com/documentation/en/red-hat-ceph-storage/version-1.3/red-hat-ceph-storage-13-installation-guide-for-rhel-x86-64/#install-selinux[SELinux] section in the Red Hat Ceph Storage https://access.redhat.com/documentation/en/red-hat-ceph-storage/1.3/installation-guide-for-rhel-x86-64/installation-guide-for-rhel-x86-64[Installation Guide for Red Hat Enterprise Linux].
NOTE: All Ceph daemons will be down for the time the `ceph-selinux` package is being installed. Therefore, your cluster node will not be able to serve any data at this point. This operation is necessary in order to update the metadata of the files located on the underlying file system and to make Ceph daemons run with the correct context. This operation may take several minutes depending on the size and speed of the underlying storage.