diff --git a/pam.spec b/pam.spec
index dc3bd90..399a6c9 100644
--- a/pam.spec
+++ b/pam.spec
@@ -19,7 +19,7 @@ Epoch:	1
 Summary:	A security tool which provides authentication for applications
 Name:		pam
 Version:	1.1.4
-Release:	8
+Release:	9
 # The library is BSD licensed with option to relicense as GPLv2+ - this option is redundant
 # as the BSD license allows that anyway. pam_timestamp and pam_console modules are GPLv2+,
 License:	BSD and GPLv2+
@@ -72,6 +72,7 @@ Patch702:	Linux-PAM-1.1.4-add-now-missing-nis-constant.patch
 # (akdengi> add user to default group users which need for Samba
 Patch801:	Linux-PAM-1.1.4-group_add_users.patch
 
+BuildRequires:	selinux-devel >= 2.1.6-7
 BuildRequires:	bison
 BuildRequires:	cracklib-devel
 BuildRequires:	flex
@@ -205,7 +206,8 @@ CFLAGS="$RPM_OPT_FLAGS -fPIC -I%{_includedir}/db_nss -D_GNU_SOURCE" \
 	--includedir=%{_includedir}/security \
 	--with-db-uniquename=_nss \
 	--docdir=%{_docdir}/%{name} \
-	--disable-selinux
+	--enable-selinux \
+	--enable-audit
 %make
 
 %install
@@ -238,13 +240,13 @@ rm -f %{buildroot}/%{_lib}/*.la
 # (blino) we don't want to test if SE Linux is built, it's disabled
 # Make sure every module subdirectory gave us a module.  Yes, this is hackish.
 for dir in modules/pam_* ; do
-if [ -d ${dir} ] && [[ "${dir}" != "modules/pam_selinux" ]] && [[ "${dir}" != "modules/pam_sepermit" ]]; then
-         [[ "${dir}" = "modules/pam_tally" ]] && continue
+#if [ -d ${dir} ] && [[ "${dir}" != "modules/pam_selinux" ]] && [[ "${dir}" != "modules/pam_sepermit" ]]; then
+#         [[ "${dir}" = "modules/pam_tally" ]] && continue
 	if ! ls -1 %{buildroot}/%{_lib}/security/`basename ${dir}`*.so ; then
 		echo ERROR `basename ${dir}` did not build a module.
 		exit 1
 	fi
-fi
+#fi
 done
 
 # Check for module problems.  Specifically, check that every module we just
@@ -295,6 +297,7 @@ fi
 %config(noreplace) %{_sysconfdir}/security/namespace.conf
 %attr(755,root,root) %config(noreplace) %{_sysconfdir}/security/namespace.init
 %config(noreplace) %{_sysconfdir}/security/pam_env.conf
+%config(noreplace) %{_sysconfdir}/security/sepermit.conf
 %config(noreplace) %{_sysconfdir}/security/time.conf
 %config(noreplace) %{_sysconfdir}/security/opasswd
 %dir %{_sysconfdir}/security/console.apps
@@ -326,3 +329,9 @@ fi
 
 %files doc
 %doc doc/txts doc/specs/rfc86.0.txt Copyright
+
+
+%changelog
+
+* Tue Feb 26 2013 Alexander Romanov <a.romanov@rosa-ntcit.ru>
+- Enabled selinux support