selinux_permissive – Change permissive domain in SELinux policy
New in version 2.0.
Synopsis
- Add and remove domain from the list of permissive domain.
Requirements
The below requirements are needed on the host that executes this module.
- policycoreutils-python
Parameters
| Parameter | Choices/Defaults | Comments |
|---|---|---|
| domain
- / required
|
the domain that will be added or removed from the list of permissive domains
|
|
| no_reload
boolean
|
|
automatically reload the policy after a change
default is set to 'false' as that's what most people would want after changing one domain
Note that this doesn't work on older version of the library (example EL 6), the module will silently ignore it in this case
|
| permissive
boolean / required
|
|
indicate if the domain should or should not be set as permissive
|
| store
-
|
name of the SELinux policy store to use
|
Notes
Note
- Requires a version of SELinux recent enough ( ie EL 6 or newer )
Examples
- selinux_permissive:
name: httpd_t
permissive: true
Status
- This module is not guaranteed to have a backwards compatible interface. [preview]
- This module is maintained by the Ansible Community. [community]
Authors
- Michael Scherer (@mscherer) <misc@zarb.org>
Hint
If you notice any issues in this documentation you can edit this document to improve it.
© 2012–2018 Michael DeHaan
© 2018–2019 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
https://docs.ansible.com/ansible/2.7/modules/selinux_permissive_module.html