Written By: |
Kenny Pearl |
---|---|
Manufacturer: |
Avaya |
Product: |
Aura Device Services (AADS) |
Version: |
|
Patch Information: |
|
Ticket Number(s): |
Description:
Newly deployed R10 AADS server and the 46xxsettings.txt is not able to be accessed. Receiving a "you do not have permission to access this resource"
Solution
Secure Linux (SELINUX) is currently enabled and running on the system. This is stopping the web server in Linux from accessing the settings file on the disk.
The command below will show you if SELINUX is set to be in enforcing mode. If the getenforce command returns a result of Permissive that means that SELINUX is turned on but will not actively stop any activity on the server. If it is Disabled that means that SELINUX labeling is disabled in the Linux Kernel.
[admin@avaadssrv ~]$ getenforce |
Basic Linux file permissions are correct for access to this directory as shown below. We need to ensure that read and execute access is there in order for us to be able to access the file. And we can see that the r and x permissions are present so this is not our issue.
namei -nom /var/www/html/46xxsettings.txt |
Looking at the SE Linux ACL for this file we can see that it only has a simple user context associated with iht.
[root@avaadssrv html]# ls -Z 46xxsettings.txt |
Solution
We need to enable the web daemon to be able to access the settings file under SE-Linux. To do this we need to run the following command.
[root@avaadssrv html]# cd /var/www/html/ |
Next verify you can now access the 46xxsettings.txt file on the AADS server using a web browser
SET L2Q1
SET L2QVLAN 500
SET PHY2VLAN 200
SET DNSSRVR 10.55.30.10
SET DOMAIN customer.com
SET MUTE_ON_REMOTE_OFF_HOOK 0
SET LOGUNSEEN 1
SET DEFAULTRING 9
SET DOT1XSTAT 0
SET DOT1X 0
SET ENHDIALSTAT 1
SET PHNCC 1
SET PHNDPLENGTH 5
SET PHNIC 011
SET PHNLD 1
SET PHNLDLENGTH 10
SET PHNOL 9
SET HTTPSRVR 10.55.30.166
#END
###########################################################################
##
##
## AVAYA IP TELEPHONE CONFIGURATION FILE TEMPLATE
Other notes:
Article on SE-Linux and making file context changes permanent on a Linux system.
Disclaimer: intlx Solutions Knowledge Base
The information contained in this knowledge base ("Content") is provided for informational purposes only and is intended to be a general resource. intlx Solutions does not guarantee the accuracy, completeness, or timeliness of the Content.
Use at Your Own Risk: By accessing and using the Content, you agree that you do so at your own risk. intlx Solutions assumes no responsibility for any errors or omissions in the Content, nor for any damages or losses you may suffer arising out of or related to the use of the Content.
Current Customers: If you are a current intlx Solutions customer and have questions or require further clarification on any information presented here, please do not hesitate to contact our support team directly. They are available to assist you and ensure you have the most up-to-date information specific to your needs.
Not a Customer? If you are not currently an intlx Solutions customer but are interested in learning more about our solutions and how we can help your business, please click here. We look forward to the opportunity to discuss your needs and explore how a partnership with intlx Solutions can benefit you.
Thank you for your understanding.