selinux_permissive - Change permissive domain in SELinux policy
New in version 2.0.
Synopsis
- Add and remove domain from the list of permissive domain.
Requirements (on host that executes module)
- policycoreutils-python
Options
| parameter | required | default | choices | comments |
|---|---|---|---|---|
| domain | yes | the domain that will be added or removed from the list of permissive domains | ||
| no_reload | no |
| automatically reload the policy after a change default is set to 'false' as that's what most people would want after changing one domain Note that this doesn't work on older version of the library (example EL 6), the module will silently ignore it in this case | |
| permissive | yes |
| indicate if the domain should or should not be set as permissive | |
| store | no | name of the SELinux policy store to use |
Examples
- selinux_permissive:
name: httpd_t
permissive: true
Notes
Note
- Requires a version of SELinux recent enough ( ie EL 6 or newer )
Status
This module is flagged as preview which means that it is not guaranteed to have a backwards compatible interface.
For help in developing on modules, should you be so inclined, please read Community Information & Contributing, Testing Ansible and Developing Modules.
© 2012–2018 Michael DeHaan
© 2018–2019 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
https://docs.ansible.com/ansible/2.4/selinux_permissive_module.html