Skip to content

Latest commit

 

History

History
39 lines (30 loc) · 1.67 KB

selinux_user.md

File metadata and controls

39 lines (30 loc) · 1.67 KB
Raw

Back to resource list

selinux_user

The selinux_user resource is used to manage SELinux users on the system.

Actions

Action Description
:manage (Default) Sets the SELinux user to the desired settings regardless of previous state.
:add Creates the SELinux user if not created.(-a)
:modify Updates the SELinux user if previously created.(-m)
:delete Removes the SELinux user if previously created. (-d)

Properties

Name Type Default Description
user String Resource name The SELinux user.
level String MLS/MCS security level for the user.
range String MLS/MCS security range for the user.
roles Array SELinux roles for the user (required for creation).

Examples

# Manage myuser_u SELinux user with a level and range of s0 and roles sysadm_r and staff_r
selinux_user 'myuser_u' do
  level 's0'
  range 's0'
  roles %w(sysadm_r staff_r)
end

# Manage myuser_u SELinux user using the default system level and range and roles sysadm_r and staff_r
selinux_user 'myuser_u' do
  roles %w(sysadm_r staff_r)
end