Add Security Modules using the Console, and SELinux


This is only working correctly in 1.1.36 version of the 389-admin package. The previous recommended way of adding modules is to use the “modutil” tool.

Add the Security Module

SELinux Issues

Copying a security module library into the Directory Server instance security directory can conflict with existing SELinux policies. An easy way to workaround this is use a symbolic link instead:

/etc/dirsrv/slapd-INSTANCE/libcknfast.so -->  /opt/nfast/toolkit/pkcs11/libcknfast.so

Otherwise you will need to update the SELinux to account for the new file in its new location.

Last modified on 29 November 2024