community / community.general / 6.6.8 / module / selogin Manages linux user to SELinux user mapping Authors: Dan Keder (@dankeder), Petr Lautrbach (@bachradsusi), James Cassell (@jamescassell)community.general.selogin (6.6.8) — module
Install with ansible-galaxy collection install community.general:==6.6.8
collections: - name: community.general version: 6.6.8
Manages linux user to SELinux user mapping
- name: Modify the default user on the system to the guest_u user community.general.selogin: login: __default__ seuser: guest_u state: present
- name: Assign gijoe user on an MLS machine a range and to the staff_u user community.general.selogin: login: gijoe seuser: staff_u serange: SystemLow-Secret state: present
- name: Assign all users in the engineering group to the staff_u user community.general.selogin: login: '%engineering' seuser: staff_u state: present
login: description: - a Linux user required: true type: str state: choices: - present - absent default: present description: - Desired mapping value. type: str reload: default: true description: - Reload SELinux policy after commit. type: bool seuser: description: - SELinux user name type: str selevel: aliases: - serange default: s0 description: - MLS/MCS Security Range (MLS/MCS Systems only) SELinux Range for SELinux login mapping defaults to the SELinux user record range. type: str ignore_selinux_state: default: false description: - Run independent of selinux runtime state type: bool