selinux_permissive – Change permissive domain in SELinux policy
selinux_permissive – Change permissive domain in SELinux policy
New in version 2.0.
Synopsis
- Add and remove domain from the list of permissive domain.
Requirements
The below requirements are needed on the host that executes this module.
- policycoreutils-python
Parameters
| Parameter | Choices/Defaults | Comments |
|---|---|---|
|
domain - / required |
the domain that will be added or removed from the list of permissive domains | |
|
no_reload boolean |
|
automatically reload the policy after a change default is set to 'false' as that's what most people would want after changing one domain Note that this doesn't work on older version of the library (example EL 6), the module will silently ignore it in this case |
|
permissive boolean / required |
|
indicate if the domain should or should not be set as permissive |
|
store - |
name of the SELinux policy store to use |
Notes
Note
- Requires a version of SELinux recent enough ( ie EL 6 or newer )
Examples
- selinux_permissive:
name: httpd_t
permissive: trueStatus
- This module is not guaranteed to have a backwards compatible interface. [preview]
- This module is maintained by the Ansible Community. [community]
Authors
- Michael Scherer (@mscherer) <[email protected]>
© 2012–2018 Michael DeHaan
© 2018–2019 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
https://docs.ansible.com/ansible/2.7/modules/selinux_permissive_module.html
