Use the rcapparmor command with one of the following parameters:
Load the kernel module, mount securityfs, parse and load profiles. Profiles and confinement are applied to any application started after this command was executed. Processes already running at the time AppArmor is started continue to run unconfined.
Unmount securityfs, and invalidate profiles.
Reload profiles.
If AppArmor is enabled, output how many profiles are loaded in complain or enforce mode.
Use the rcaaeventd command to control event logging with aa-eventd. Use the start and stop options to toggle the status of the aa-eventd and check its status using the status.