selinux - Change policy and state of SELinux

Author:Derek Carter <goozbach@friocorte.com>

Synopsis

Configures the SELinux mode and policy. A reboot may be required after usage. Ansible will not issue this reboot but will let you know when it is required.

Options

parameter required default choices comments
conf no /etc/selinux/config
    path to the SELinux configuration file, if non-standard
    policy no
      name of the SELinux policy to use (example: targeted) will be required if state is not disabled
      state yes
      • enforcing
      • permissive
      • disabled
      The SELinux mode

      Note

      Requires libselinux-python

      Examples


      - selinux: policy=targeted state=enforcing
      - selinux: policy=targeted state=permissive
      - selinux: state=disabled
      

      Note

      Not tested on any debian based system

      Table Of Contents

      Previous topic

      seboolean - Toggles SELinux booleans.

      Next topic

      service - Manage services.