How to exclude Cylance on SELinux

Hello.

We have Cylance protect anti-virus software version 2.0.1530.706 running on a RHEL 7 server with SE Linux enforced.

The following entries are being written to /var/log/messages:

SELinux is preventing /usr/sbin/mdadm from getattr access on the file /dev/mqueue/com.cylance.cef.message_broker

SELinux is preventing /usr/sbin/mdadm from getattr access on the file /dev/mqueue/com.cylance.protect

Has anyone else running Cylance protect on RHEL 7 SE Linux encountered this, and if so, how did you resolve?

I'm guessing there's a way to exclude Cylance from being blocked by SE Linux but I'm unsure how to do it.

Add an entry to /etc/selinux/targeted/booleans perhaps?

Any help would be appreciated.

Thanks.

Tom

Started 2019-06-19T22:03:50+00:00 by

Tom Wolf

Community Member 35 points

Responses

Here are the common uses of Markdown.

Code blocks

~~~
Code surrounded in tildes is easier to read
~~~

Links/URLs

[Red Hat Customer Portal](https://access.redhat.com)