update selinux
diff --git a/tasks/main.yml b/tasks/main.yml
index cd27de1..09131b0 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -8,10 +8,17 @@
value: "{{ ansible_selinux.status == 'disabled' }}"
- name: Permanently disable SELINUX
- selinux: state=disabled
+ selinux:
+ state: disabled
when: ansible_selinux.status == 'enabled'
register: selinux_disabled
+- name: Persist SELINUX disableD state
+ lineinfile:
+ path: /etc/sysconfig/selinux
+ line: 'SELINUX=disabled'
+ regex: '^SELINUX=.*'
+
- name: Restart node
debug:
msg: 'SELinux MUST be disabled, selinux has been updated, please restart node now...'
