You are reading an unmaintained version of the Ansible documentation. Unmaintained Ansible versions can contain unfixed security vulnerabilities (CVE). Please upgrade to a maintained version. See the latest Ansible documentation.

ansible.posix.seboolean module – Toggles SELinux booleans

Note

This module is part of the ansible.posix collection (version 1.4.0).

You might already have this collection installed if you are using the ansible package. It is not included in ansible-core. To check whether it is installed, run ansible-galaxy collection list.

To install it, use: ansible-galaxy collection install ansible.posix.

To use it in a playbook, specify: ansible.posix.seboolean.

New in version 1.0.0: of ansible.posix

Synopsis
Requirements
Parameters
Notes
Examples

Synopsis 

Toggles SELinux booleans.

Requirements 

The below requirements are needed on the host that executes this module.

libselinux-python
libsemanage-python
python3-libsemanage

Parameters 

Parameter	Comments
ignore_selinux_state boolean	Useful for scenarios (chrooted environment) that you can’t get the real SELinux state. Choices: no ← (default) yes
name string / required	Name of the boolean to configure.
persistent boolean	Set to `yes` if the boolean setting should survive a reboot. Choices: no ← (default) yes
state boolean / required	Desired boolean value Choices: no yes

Notes 

Note

Not tested on any Debian based system.

Examples 

- name: Set httpd_can_network_connect flag on and keep it persistent across reboots
  ansible.posix.seboolean:
    name: httpd_can_network_connect
    state: yes
    persistent: yes

Authors

Stephen Fromm (@sfromm)

Collection links

Issue Tracker Repository (Sources)

ansible.posix.seboolean module – Toggles SELinux booleans

Synopsis

Requirements

Parameters

Notes

Examples