From b199fb0a31a617c2ed785599c232c1ab819b61f2 Mon Sep 17 00:00:00 2001
From: Kristopher <kristopherleads@gmail.com>
Date: Thu, 24 Jul 2025 09:02:27 -0700
Subject: [PATCH] audit2allow: add page (#17208)

Co-authored-by: Managor <42655600+Managor@users.noreply.github.com>
Co-authored-by: Dylan <145150333+dmmqz@users.noreply.github.com>
Co-authored-by: Machiavelli <145562237+MachiavelliII@users.noreply.github.com>
---
 pages/common/audit2allow.md | 38 +++++++++++++++++++++++++++++++++++++
 1 file changed, 38 insertions(+)
 create mode 100644 pages/common/audit2allow.md

diff --git a/pages/common/audit2allow.md b/pages/common/audit2allow.md
new file mode 100644
index 0000000000..911ab67a26
--- /dev/null
+++ b/pages/common/audit2allow.md
@@ -0,0 +1,38 @@
+# audit2allow
+
+> Scan logs for messages pertaining to denied permissions.
+> Generate a report of Type Enforcement (TE) rules that might allow successful operations.
+> See also `audit2why`.
+> More information: <https://manned.org/audit2allow>.
+
+- Show all generated messages in audit and message logs:
+
+`audit2allow {{[-a|--all]}}`
+
+- Show all generated messages since last boot:
+
+`audit2allow {{[-b|--boot]}}`
+
+- Display detailed information around generated messages:
+
+`audit2allow {{[-e|--explain]}}`
+
+- Enable verbose output mode:
+
+`audit2allow {{[-v|--verbose]}}`
+
+- Use installed macros to generate a reference policy:
+
+`audit2allow {{[-R|--reference]}}`
+
+- Specify a policy file for further analysis:
+
+`audit2allow {{[-p|--policy]}} {{path/to/policyfile}}`
+
+- Limit analysis to messages with a type specified in `regex`:
+
+`audit2allow {{[-t|--type]}} {{type_regex}}`
+
+- Display help:
+
+`audit2allow {{[-h|--help]}}`