aa-disable

Disable a profile

$ sudo aa-disable [path/to/profile]

$ sudo aa-disable [path/to/profile1] [path/to/profile2]

$ sudo aa-disable --dir [path/to/profiles]

aa-disable executable [executable ...] [-d /path/to/profiles] [--no-reload]

aa-disable is used to disable one or more AppArmor profiles. This command will unload the profile from the kernel and prevent the profile from being loaded on AppArmor startup.
Disabled profiles remain in /etc/apparmor.d but are not active. Use aa-enforce to re-enable a disabled profile.

-d, --dir /path/to/profiles

Specifies the directory containing AppArmor profiles; defaults to /etc/apparmor.d

Do not unreload the profile after modifying it

Disabling a profile removes security protections for the associated application. The application will run without AppArmor confinement until the profile is re-enabled.

Part of the AppArmor utilities package for managing application security profiles on Linux systems.

aa-enforce(8), aa-complain(8), aa-status(8), apparmor(7)