enable ssh_sysadm_login sebool for all clouds

addressing: type=AVC msg=audit(1380833385.268:173): avc: denied { getattr } for pid=781 comm="sshd" path="/root/.ssh/authorized_keys" dev="vda1" ino=6493 scontext=system_u:system_r:sshd_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file
2013-10-04 07:36:31 +00:00 · 2013-10-04 07:36:31 +00:00 · a7890c6874
commit a7890c6874
parent c0d3729ce2
1 changed files with 3 additions and 0 deletions
--- a/tasks/cloud_setup_basic.yml
+++ b/tasks/cloud_setup_basic.yml
@ -48,6 +48,9 @@
  - config
  ignore_errors: true

+- name: enable ssh_sysadm_login sebool
+  action: seboolean name=ssh_sysadm_login state=yes persistent=yes
+
 # note - kinda should be a handler - but handlers need args
 - name: restorecon
  action: command restorecon -R /root/.ssh