openshift/openshift-docs
1
0
Fork 0
mirror of https://github.com/openshift/openshift-docs.git synced 2026-02-05 12:46:18 +01:00
Code Issues Releases Activity
Files
enterprise-4.21
openshift-docs/modules/spo-selinux-permissive.adoc

28 lines
632 B
Plaintext
Raw Permalink Blame History

// Module included in the following assemblies:
//
// * security/security_profiles_operator/spo-selinux.adoc
:_mod-docs-content-type: PROCEDURE
[id="spo-selinux-permissive_{context}"]
= Applying SELinux log policies
To log policy violations or AVC denials, set the `SElinuxProfile` profile to `permissive`.
[IMPORTANT]
====
This procedure defines logging policies. It does not set enforcement policies.
====
.Procedure
* Add `permissive: true` to an `SElinuxProfile`:
+
[source,yaml]
----
apiVersion: security-profiles-operator.x-k8s.io/v1alpha2
kind: SelinuxProfile
metadata:
name: nginx-secure
spec:
permissive: true
----
View Git Blame Copy Permalink