Puppet Class: confdroid_nrpe::selinux::config
- Inherits:
- confdroid_nrpe::params
- Defined in:
- manifests/selinux/config.pp
Summary
Class manages all aspects of configuring selinux for NRPE.Overview
confdroid_nrpe::selinux::config.pp # Module name: confdroid_nrpe Author: 12ww1160 (12ww1160@ConfDroid.com)
5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 |
# File 'manifests/selinux/config.pp', line 5
class confdroid_nrpe::selinux::config (
) inherits confdroid_nrpe::params {
if $ne_include_selinux == true {
# manage allow nagios sudo
exec { 'nagios_run_sudo':
command => 'setsebool -P nagios_run_sudo 1',
path => ['/usr/bin','/usr/sbin'],
cwd => '/tmp',
unless => 'getsebool nagios_run_sudo | awk \'{print$3}\' | grep -ic "on"'
}
# create policy file for sudo selinux policy
exec { 'create_nrpe_pp':
command => template($ne_checkmodule_nrpe_erb),
user => 'root',
creates => $ne_nrpe_pp_file,
refreshonly => true,
notify => Exec['import_semodule_nrpe'],
}
# import semodule
exec { 'import_semodule_nrpe':
command => template($ne_semodule_erb),
user => 'root',
unless => '/sbin/semodule -l | grep nrpe | grep -v nrpe_',
refreshonly => true,
}
}
}
|