If you don't have audit2why, first install it:

# yum install policycoreutils-python

Then you can run this command and it should tell you why it was denied and propose way to fix it:

# cat /var/log/audit/audit.log* | audit2why

You can check these SELinux booleans and turn on the one(s) you need, perhaps samba_enable_home_dirs or samba_export_all_ro/rw.

# getsebool -a|grep -i smb
smbd_anon_write --> off
# getsebool -a | grep -i samba
samba_create_home_dirs --> off
samba_domain_controller --> off
samba_enable_home_dirs --> off
samba_export_all_ro --> off
samba_export_all_rw --> off
samba_load_libgfapi --> off
samba_portmapper --> off
samba_run_unconfined --> off
samba_share_fusefs --> off
samba_share_nfs --> off
sanlock_use_samba --> off
tmpreaper_use_samba --> off
use_samba_home_dirs --> off
virt_use_samba --> off

e.g.

# setsebool -P samba_enable_home_dirs=on


On Sat, Dec 19, 2020 at 10:19:24PM -0500, Mher Mnatsakanyan via WLUG wrote:
> Hi everyone.
>
> I hope everything is well  with all of you and yours.
>
> I have a question and need help please.
>
> I installed a Samba server on CentOS8 which works well.
>
> When I try to mount the share from that Samba server on the client side I
> get a permission denied error. When I set SELinux from Enforcing to
> Permissive mode it seems to be mounting and the permission denied error
> goes away. Any suggestions how I can do the same with SELinux enforcing
> mode?
>
> Thank you very much in advance.
>
> Respectfully,
> Mher Mnatsakanyan
_______________________________________________
WLUG mailing list -- wlug@lists.wlug.org
To unsubscribe send an email to wlug-leave@lists.wlug.org
Create Account: https://wlug.mailman3.com/accounts/signup/
Change Settings: https://wlug.mailman3.com/postorius/lists/wlug.lists.wlug.org/
Web Forum/Archive: https://wlug.mailman3.com/hyperkitty/list/wlug@lists.wlug.org/message/7I7X4VTPMLR4PYNWVOJAJAWERZQM7HQE/