"Permission denied" opening any directory after changing the root of the Docker runtime (--graph)

Solution Verified - Updated -


  • After changing the root of the Docker runtime (--graph argument) to a different directory than the default (/var/lib/docker), processes running inside containers are unable to open any directory.
# grep OPTIONS /etc/sysconfig/docker
OPTIONS='--selinux-enabled --log-driver=journald --signature-verification=false --graph=/data/docker'

# docker run -ti busybox /bin/sh
/ # ls
ls: can't open '.': Permission denied


  • Red Hat Enterprise Linux 7.x
  • Any docker version

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In