Google Git
Sign in
edge/private-cloud-ansible-playbooks/apigee-opdk-setup-selinux-disable/0e4afd0f42f0b9fb312287ef1875607b7ef94b2f^!/.
commit
0e4afd0f42f0b9fb312287ef1875607b7ef94b2f
[log] [tgz]
author
Carlos Frias <carlos.frias.01@gmail.com>
Tue Oct 31 14:21:14 2017 -0400
committer
Carlos Frias <carlos.frias.01@gmail.com>
Tue Oct 31 14:21:14 2017 -0400
tree
384715bc48c1c3f498858b40f6f636f52a093dfd
parent
3cd048eb6b23874be1930a4c278406de247e3526 [diff]
escalating priviledge from role

diff --git a/tasks/main.yml b/tasks/main.yml
index 3c3cd00..0ca5eeb 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml

@@ -7,17 +7,19 @@
     key: 'selinux_disabled'
     value: "{{ ansible_selinux.status == 'disabled' }}"
 
-- name: Permanently disable SELINUX
-  selinux:
-    state: disabled
-  when:  ansible_selinux.status == 'enabled'
-  register: selinux_disabled
+- block:
+  - name: Permanently disable SELINUX
+    selinux:
+      state: disabled
+    when:  ansible_selinux.status == 'enabled'
+    register: selinux_disabled
 
-- name: Persist SELINUX disableD state
-  lineinfile:
-    path: /etc/sysconfig/selinux
-    line: 'SELINUX=disabled'
-    regexp: '^SELINUX=.*'
+  - name: Persist SELINUX disableD state
+    lineinfile:
+      path: /etc/sysconfig/selinux
+      line: 'SELINUX=disabled'
+      regexp: '^SELINUX=.*'
+  become: yes
 
 - name: Restart node
   debug: