moves execs to selinux

manifests/selinux/config.pp

@@ -33,5 +33,22 @@ class cd_nrpe::selinux::config (
       cwd     =>  '/tmp',
       unless  =>  'getsebool nagios_run_sudo | awk \'{print$3}\' | grep -ic "on"'
     }
+
+    # create policy file for sudo selinux policy
+    exec { 'create_nrpe_pp':
+      command     =>  template($ne_checkmodule_nrpe_erb),
+      user        =>  'root',
+      creates     =>  $ne_nrpe_pp_file,
+      refreshonly =>  true,
+      notify      =>  Exec['import_semodule_nrpe'],
+    }
+
+    # import semodule
+    exec { 'import_semodule_nrpe':
+      command     =>  template($ne_semodule_erb),
+      user        =>  'root',
+      unless      =>  '/sbin/semodule -l | grep nrpe | grep -v nrpe_',
+      refreshonly =>  true,
+    }
   }
 }