To create an SELinux module with rules required for operation of Kaspersky Endpoint Security:
# setenforce Permissive
/etc/selinux/config
specify the SELINUX=permissive
parameter value and restart the operating system.kesl-control --start-t 1
kesl-control --start-t 4 -W
kesl-control --start-t 5 -W
grep kesl /var/log/audit/audit.log | audit2allow -M kesl
Ensure that the generated list contains only rules related to Kaspersky Endpoint Security.
# semodule -i kesl.pp
# setenforce Enforcing
If new audit messages related to Kaspersky Endpoint Security appear, the rules module file needs to be updated.
For additional information, please refer to the documentation on the relevant operating system.
Page top