Use the rcapparmor command with one of the following parameters:
start
Load the kernel module, mount securityfs, parse and load profiles. Profiles and confinement are applied to any application started after this command was executed. Processes already running at the time AppArmor is started continue to run unconfined.
stop
Unmount securityfs, and invalidate profiles.
reload
Reload profiles.
status
If AppArmor is enabled, output how many profiles are loaded in complain or enforce mode.
Use the rcaaeventd command to control event logging
with aa-eventd. Use the start
and stop
options to toggle the status of the aa-eventd and check its status using
the status
.