I needed to add the following so that numad can do its job: policy_module(mynumad, 1.0.0) gen_require(` type numad_t, svirt_t; ') domain_read_all_domains_state(numad_t) domain_setpriority_all_domains(numad_t) fs_manage_cgroup_dirs(numad_t) fs_rw_cgroup_files(numad_t) allow numad_t self:capability sys_ptrace; allow numad_t svirt_t:process ptrace;