setsebool
Set SELinux boolean values at runtime
TLDR
Set a boolean temporarily
$ sudo setsebool [boolean_name] on
Unset a boolean temporarily$ sudo setsebool [boolean_name] off
Set a boolean persistently across reboots$ sudo setsebool -P [boolean_name] on
Set multiple booleans persistently$ sudo setsebool -P [bool1]=[on] [bool2]=[off]
SYNOPSIS
setsebool [-PNV] boolean value | bool1=val1 bool2=val2...
DESCRIPTION
setsebool sets the current state of a particular SELinux boolean or a list of booleans to a given value. Booleans allow runtime customization of SELinux policy without requiring policy modification or recompilation.Values can be specified as 1, true, or on for enabled, or 0, false, or off for disabled. Multiple booleans can be set at once using the bool=value syntax.
PARAMETERS
-P
Make changes persistent across reboots-N
Don't reload policy after change-V
Verbose output
CAVEATS
Requires root privileges. Without -P flag, changes are lost on reboot. Use getsebool to view current boolean values. SELinux must be enabled for this command to work.
SEE ALSO
getsebool(8), semanage-boolean(8), setenforce(8)
