Questions to Determine

• Is SELinux in enforcing mode on this server?
• What does the audit log show for AVC denial messages related to this binary?
• What is the SELinux file context (label) on the binary and its directories?
• What SELinux domain does the process run in?
• Does the binary need to bind to a non-standard port?
• Does the binary need to read files or connect to resources that have restricted SELinux contexts?
• What SELinux policy module would allow the required access?
• Is the correct SELinux file context applied to /opt/inventory-api/?