To protect a process from being "killed", i.e. receiving the SIGKILL signal please confirm in seos.ini default value of kill_signal_mask is set
Then submit this selang rule to e.g. protect the portmap daemon
AC> er process /sbin/portmap owner(nobody) defaccess(none) audit(all)
Confirm the rule is effective by trying to kill the process
[root@RH ~]# killall -s SIGTERM portmap
portmap(5614): Operation not permitted
portmap: no process killed
Note that by default only SIGKILL | SIGSTOP | SIGTERM signals are protected
Other signals, such as SIGHUP or SIGUSR1 are passed to the process that they target, and that process decides whether to ignore the signal or to react on it