diff --git a/roles/rke2/tasks/fix_selinux.yml b/roles/rke2/tasks/fix_selinux.yml
index 3a75286a0aec02ee54b85e651148d27990ab1cd2..8923c4e228594a159033514a62c957e817e49dad 100644
--- a/roles/rke2/tasks/fix_selinux.yml
+++ b/roles/rke2/tasks/fix_selinux.yml
@@ -35,9 +35,9 @@
 - name: Wait for openstack-cloud-controller deamon set to be ready
   shell: "/var/lib/rancher/rke2/bin/kubectl --kubeconfig /etc/rancher/rke2/rke2.yaml wait --namespace=kube-system --for=condition=Ready pods --selector app=openstack-cloud-controller-manager --timeout=360s"
   register: openstack_ccm_ready
-  until: openstack_ccm_ready.stdout
-  retries: 2
-  delay: 30
+  #until: openstack_ccm_ready.stdout
+  #retries: 2
+  #delay: 30
   ignore_errors: True
 
 - name: Enable SELinux
diff --git a/roles/rke2/tasks/setup_host.yml b/roles/rke2/tasks/setup_host.yml
index bce32655a29c3b088620d750ac3e083543203862..65ff584d5d33b67839190fcc7da52766d9c64f12 100644
--- a/roles/rke2/tasks/setup_host.yml
+++ b/roles/rke2/tasks/setup_host.yml
@@ -75,7 +75,8 @@
 
 - name: Disable SELinux
   selinux:
-    state: disabled
+    policy: targeted
+    state: permissive
   when: ( 'control-plane' in group_names )
 
 - name: Copy SELinux Policies