{{tag>[centos selinux rhel]}}

=====Generate SELinux policy=====
//Tested on CentOS 7, Fedora 24//

  * Install policycoreutils-python <code>yum install policycoreutils-python</code>

  * Create policy from audit log. <code>cp /var/log/audit/audit.log /var/tmp
cd /var/tmp
audit2allow -M wfica < audit.log</code>
  * Follow on screen directions.

====If you need to edit the policy file====
  * Edit the .te file.
  * Recompile and load the module. For example: <code>
checkmodule -M -m -o wfica.mod wfica.te
semodule_package -o wfica.pp -m wfica.mod
semodule -i wfica.pp</code>