IBM Guardium

 View Only

 GKLM v5 and fapolicyd

DENNIS MOORE's profile image
DENNIS MOORE posted Wed April 30, 2025 10:32 AM

Hello, group.

I'm bringing up a couple new RHEL9 servers to load GKLM 5.0 onto.  The servers have fapolicyd installed and active.  Unfortunately, I don't think the 2 are compatible.

Every time GLKM launches, it creates new folders in /opt/IBM/WebSphere/Liberty/usr/servers/gklm50server/workarea/org.eclipse.osgi/, folders which I have not been able to account for in fapolicyd because they weren't there previously.  Is there a way to run GKLM where it doesn't created new folders or a way to run fapolicyd (not in permissive mode) where it allows newly created folders/files under a specific folder?  Reading about both, I haven't found a way.  Does GKLM really, really need the newly created folders or can we live with those not being allowed?

Thank you for any help.

Erwin Friethoff's profile image
Erwin Friethoff posted Wed May 07, 2025 05:03 PM

Hello Dennis,  I see you have asked this question twice here and no responses yet.  Unfortunately I do not have the answer for you but I would suggest you reach out to your local techsales if you are doing a POC or trial or open a case with support on https://www.ibm.com/support if you are using licensed software.  
( I see you are also IBMer, will contact you via internal systems also)
Regards, 

Erwin

Related Content