I have made a user called bryn1u. I've given him to sysadm_u becouse i want to can log in as a superuser (su). After that i connected via ssh but doesn't work. Where is the problem. I checked with user_u and works like a charm.
Code: Select all
[root@proton ~]# semanage login -a -s sysadm_u bryn1u
[root@proton ~]# semanage login -l
Login Name SELinux User MLS/MCS Range Service
__default__ unconfined_u s0-s0:c0.c1023 *
bryn1u user_u s0 *
root unconfined_u s0-s0:c0.c1023 *
system_u system_u s0-s0:c0.c1023 *
[root@proton ~]# semanage user -l
Labeling MLS/ MLS/
SELinux User Prefix MCS Level MCS Range SELinux Roles
bryn1u user s0 s0 user_r sysadm_r
guest_u user s0 s0 guest_r
root user s0 s0-s0:c0.c1023 staff_r sysadm_r system_r unconfined_r
staff_u user s0 s0-s0:c0.c1023 staff_r sysadm_r system_r unconfined_r
sysadm_u user s0 s0-s0:c0.c1023 sysadm_r
system_u user s0 s0-s0:c0.c1023 system_r unconfined_r
unconfined_u user s0 s0-s0:c0.c1023 system_r unconfined_r
user_u user s0 s0 user_r
xguest_u user s0 s0 xguest_r
[root@proton ~]# ^C
Code: Select all
Sep 23 10:26:18 proton sshd[16522]: Accepted password for bryn1u from 213.189.55.149 port 13348 ssh2
Sep 23 10:26:18 proton sshd[16522]: pam_selinux(sshd:session): Unable to get valid context for bryn1u
Sep 23 10:26:18 proton sshd[16522]: pam_unix(sshd:session): session opened for user bryn1u by (uid=0)
Sep 23 10:26:18 proton sshd[16522]: error: PAM: pam_open_session(): Cannot make/remove an entry for the specified session
Sep 23 10:26:18 proton sshd[16522]: error: ssh_selinux_setup_pty: security_compute_relabel: Invalid argument
Sep 23 10:26:18 proton sshd[16527]: Received disconnect from 213.189.55.149: 11: disconnected by user