Cluster fencing via telnet/ssh fails with SELinux enforcing in RHEL 5 and 6

Solution Verified - Updated -

Issue

  • With SELinux in enforcing mode, fencing does not happen when issued through fenced daemon. However, it works with the fence_node command.
  • Fence agents using ssh or telnet as the connection method fail when SELinux is in enforcing mode

Environment

  • Red Hat Enterprise Linux 5 Advanced Platform (Clustering)
  • Red Hat Enterprise Linux Server 6 (with the High Availability Add on)
  • SELinux in enforcing mode
  • One of the following fence agents:
    • fence_alom
    • fence_apc
    • fence_bladecenter
    • fence_drac5
    • fence_ilo_mp
    • fence_ldom
    • fence_lpar
    • fence_rsa
    • fence_virsh
    • fence_vmware
    • fence_wti

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In