Modify Security Settings

The default Red Hat firewall settings cause issues with SecurityCenter’s web services. To easily alleviate this, SELinux must be either set to “Disabled” or enabled in “Permissive” mode. You can disable SELinux “Enforcing” mode using the following steps:

  1. Navigate to: /etc/selinux
  2. Edit the file named “config”.
  3. Change the SELINUX line from “SELINUX=enforcing” to “SELINUX=disabled” or “SELINUX=permissive”.
  4. Save the file.
  5. Reboot the system.

Ensure the following incoming services are permitted by the firewall rules:

Note: Please consult local security and best practices within your environment for the proper usage and configuration of SELinux. SecurityCenter is known to work with SELinux in “Enforcing” mode with some customization of the SELinux rules. However, permitted rules vary from organization to organization. Additional information about SELinux can be read here - https://fedoraproject.org/wiki/SELinux_FAQ.

 

Copyright © 2016. Tenable Network Security, Inc. All rights reserved. Tenable Network Security and Nessus are registered trademarks of Tenable Network Security, Inc. SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.