Hide Forgot
Description of problem: while restarting service, user gets access denied. Unable to find any specific reason. # cat /etc/redhat-release Red Hat Enterprise Linux Server release 7.2 (Maipo) # sestatus SELinux status: enabled SELinuxfs mount: /sys/fs/selinux SELinux root directory: /etc/selinux Loaded policy name: targeted Current mode: enforcing Mode from config file: enforcing Policy MLS status: enabled Policy deny_unknown status: allowed Max kernel policy version: 28 # rpm -qa|grep systemd systemd-libs-219-19.el7_2.7.x86_64 systemd-sysv-219-19.el7_2.7.x86_64 systemd-python-219-19.el7_2.7.x86_64 systemd-219-19.el7_2.7.x86_64 # systemctl status httpd Failed to get properties: Access denied # systemctl restart httpd Failed to get properties: Access denied Version-Release number of selected component (if applicable): systemd-219-19.el7_2.7.x86_64 How reproducible: 100% Steps to Reproduce: mentioned as above Actual results: Access denied to all operations related to service using systemctl Expected results: All operations related to service should be successful. Additional info: Executing `systemctl daemon-reexec` resolves the issue.
Do you see any AVC deny message in audit.log?
No. There are no AVC deny messages related to any service which I am working on.
Could you send us the logs from that machine? If this is reproducible, can you boot with debug on kernel cmdline, reproduce the issue and send us output of journalctl -b?
Closing for the lack of input.
i found the same issue. ]$ systemctl status irqbalance Failed to get properties: Access denied
~]$ cat /etc/redhat-release CentOS Linux release 7.3.1611 (Core) not sure what kind of log you need?