SystemD Protection
In RedHat 7 and subsequent versions, a lot of system functionality has been moved to /etc/systemd/
which was previously not protected in CipherTrust Transparent Encryption. CipherTrust Transparent Encryption now gives you the option to protect it, meaning that no one can modify or delete files.
To protect the systemD directory:
-
Log on to CipherTrust Manager.
-
Click Transparent Encryption.
-
Click on the desired client name to open it.
-
In the Advanced Security Configuration, click View/Edit Settings link.
-
Select enabled or disabled and click save.
-
If you need to add a process to the directory:
a. Disable protection.
b. Add the file to the
/etc/systemd/
directory.c. Re-enable protection.