Enable or Disable Permissive Domain in SELinux policy on Linux — Ansible module selinux_permissive

How to automate the enabling or disabling of SELinux Permissive policy per single process or domain keeping the whole system under enforcing policy and make it persistent after a reboot on Linux with Ansible.

SELinux Permissive Domain

What is SELinux?

Security-Enhanced Linux (SELinux) is a Linux kernel security module that provides a mechanism for supporting access control security policies, including mandatory access controls (MAC).

What is SELinux Permissive Domain?

SELinux Permissive Domains allow an administrator to configure a single process (domain) to run permissive, rather than making the whole system permissive.

Ansible Enable or Disable Permissive Domain in SELinux policy

• `community.general.selinux_permissive`
• Change permissive domain in SELinux policy