diff --git a/validations_common/roles/validate_selinux/tasks/main.yml b/validations_common/roles/validate_selinux/tasks/main.yml
index d0ef3a0..0bda043 100644
--- a/validations_common/roles/validate_selinux/tasks/main.yml
+++ b/validations_common/roles/validate_selinux/tasks/main.yml
@@ -53,11 +53,11 @@
 
 - name: Fetch denials from auditlog
   become: true
-  ignore_errors: true
+  failed_when: false
   changed_when: false
   shell: |
     set -o pipefail
-    grep denied {{ validate_selinux_audit_source }} > /tmp/denials.log
+    grep -i denied {{ validate_selinux_audit_source }} > /tmp/denials.log || (echo "No denials found in auditlog"; exit 0)
 
 - name: Get stat for denials.log
   stat: