selinux_login
The selinux_login
resource is used to manage Linux user to SELinux user mappings on the system.
Actions
Action | Description |
---|---|
:manage | (Default) Sets the SELinux login mapping to the desired settings regardless of previous state. |
:add | Creates the SELinux login mapping if not created.(-a ) |
:modify | Updates the SELinux login mapping if previously created.(-m ) |
:delete | Removes the SELinux login mapping if previously created. (-d ) |
Properties
Name | Type | Default | Description |
---|---|---|---|
login | String | Resource name | The OS user login. |
user | String | The SELinux user. | |
range | String | MLS/MCS security range for the user. |
Examples
# Manage myuser OS user mapping with a range of s0 and associated SELinux user myuser_u
selinux_login 'myuser' do
user 'myuser_u'
range 's0'
end
# Manage myuser OS user mapping using the default system range and associated SELinux user myuser_u
selinux_login 'myuser' do
user 'myuser_u'
end
Was this helpful?