W3cubDocs

/Ansible

selinux - Change policy and state of SELinux

Synopsis
Requirements (on host that executes module)
Options
Examples
Notes
- Status
- Maintenance Info

Synopsis

Configures the SELinux mode and policy. A reboot may be required after usage. Ansible will not issue this reboot but will let you know when it is required.

Requirements (on host that executes module)

libselinux-python

Options

parameter	required	default	choices	comments
conf	no	/etc/selinux/config		path to the SELinux configuration file, if non-standard
policy	no			name of the SELinux policy to use (example: `targeted`) will be required if state is not `disabled`
state	yes		enforcing permissive disabled	The SELinux mode

Examples

# Enable SELinux
- selinux:
    policy: targeted
    state: enforcing

# Put SELinux in permissive mode, logging actions that would be blocked.
- selinux:
    policy: targeted
    state: permissive

# Disable SELinux
- selinux:
    state: disabled

Notes

Note

Not tested on any debian based system

Status

This module is flagged as stableinterface which means that the maintainers for this module guarantee that no backward incompatible interface changes will be made.

Maintenance Info

For more information about Red Hat’s this support of this module, please refer to this knowledge base article<https://access.redhat.com/articles/rhel-top-support-policies>

For help in developing on modules, should you be so inclined, please read Community Information & Contributing, Testing Ansible and Developing Modules.

© 2012–2017 Michael DeHaan
© 2017 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
https://docs.ansible.com/ansible/latest/selinux_module.html