Issues Running Checkmk in Podman Environment

CFriedrich · October 23, 2025, 8:34am

**CMK version:cee 2.4.0p14
OS version: RHEL 9.4 / podman-4.9.4-16

I’m trying to run Checkmk Enterprise 2.4.0p14 inside a Podman (rootless) environment using podman-compose. My compose.yaml initially looked like this:

services:
  checkmk:
    image: "docker.io/checkmk/check-mk-enterprise:2.4.0p14"
    container_name: "checkmk"
    environment:
      - CMK_SITE_ID=cmk_pm_1
      - TZ=Europe/Berlin
    volumes:
      - /podman/checkmk/sites/cmk_pm_1:/omd/sites
    tmpfs:
      - /opt/omd/sites/cmk_pm_1/tmp
    ports:
      - 8080:5000
      - 8000:8000
    restart: always

Using this compose file I always get this error:

>>>> Executing external compose provider "/podman/.local/bin/podman-compose". Please refer to the documentation for details. <<<<

e1bfc9b1056af5ad12d3f647c178c0f9a94d26a09d7dde8b462f79f7d34ab76f
667f25900bc01813637f170ce245c42aace567f81cfd6f972f55fc550e275b3e
[checkmk] | ### CREATING SITE 'cmk_pm_1'
[checkmk] | Failed to finalize site: [Errno 13] Permission denied: '/omd/sites/cmk_pm_1/tmp'
[checkmk] | Adding /opt/omd/sites/cmk_pm_1/tmp to /etc/fstab.
[checkmk] | Going to set TMPFS to off.
[checkmk] | Adding /opt/omd/sites/cmk_pm_1/tmp to /etc/fstab.
[checkmk] | Going to set TMPFS to off.
[checkmk] | Error in non-priviledged sub-process.

Does anybody have an idea how to solve this?
I know that podman is not supported, but in my company we have to use podman instead of docker and I ask myself if checkmk is somehow able to run in a podman environment.

Christian

andreas-doehler · October 23, 2025, 8:39am

As it is a permission error - why not setup the tempfs like it is in the documentation with specific user and group id?

CFriedrich · October 23, 2025, 8:55am

Hi @andreas-doehler,
I tried this initially (:uid=1000,gid=1000), but then I got the following:

Error: unknown mount option "uid=1000": invalid mount option

It seems that Podman does not support uid/gid options for tmpfs mounts…

andreas-doehler · October 23, 2025, 9:11am

Then you should run your container without tmpfs.
Or you can try to use mount with explicit fs type instead of --tmpfs.

CFriedrich · October 23, 2025, 9:25am

I guess there is no option to disable tmpfs.
chatgpt mentioned this as an environment variable in the compose file:

environment:
  - CMK_DISABLE_TMPFS=1

But when using this I still get:


004469b58a7aa9807b3237a62444bf2d688fd2d14b6fefba0de288007ef5b5ba
aa2822eed458678e00c6c90548197072b97cb3637503a4e16d1cc003df2ea761
[checkmk] | ### CREATING SITE 'cmk_pm_1'
[checkmk] | Adding /opt/omd/sites/cmk_pm_1/tmp to /etc/fstab.
[checkmk] | Going to set TMPFS to off.
[checkmk] | Failed to finalize site: [Errno 13] Permission denied: '/omd/sites/cmk_pm_1/tmp'
[checkmk] | Preparing tmp directory /omd/sites/cmk_pm_1/tmp...Adding /opt/omd/sites/cmk_pm_1/tmp to /etc/fstab.
[checkmk] | Going to set TMPFS to off.
[checkmk] | Error in non-priviledged sub-process.

Do you have an example for your second idea? explicit fs type?

Thank you!
Christian