diff --git a/crates/xtask/src/tmt.rs b/crates/xtask/src/tmt.rs
index f0242ca06..2fc9b9db8 100644
--- a/crates/xtask/src/tmt.rs
+++ b/crates/xtask/src/tmt.rs
@@ -1070,6 +1070,18 @@ pub(crate) fn update_integration() -> Result<()> {
     tests_content.push_str("# THIS IS GENERATED CODE - DO NOT EDIT\n");
     tests_content.push_str("# Generated by: cargo xtask tmt\n");
     tests_content.push_str("\n");
+    // bootc probes for SELinux mac_admin capability by attempting chcon with
+    // an intentionally invalid label, which generates expected AVC denials.
+    // Report as informational only in OSCI gating test
+    tests_content
+        .push_str("# bootc probes for SELinux mac_admin capability by attempting chcon with\n");
+    tests_content
+        .push_str("# an intentionally invalid label, which generates expected AVC denials.\n");
+    tests_content.push_str("# Report as informational only in OSCI gating test\n");
+    tests_content.push_str("check:\n");
+    tests_content.push_str("  - how: avc\n");
+    tests_content.push_str("    result: info\n");
+    tests_content.push_str("\n");
     tests_content.push_str(&tests_yaml_formatted);
 
     // Only write if content changed
diff --git a/hack/packages.txt b/hack/packages.txt
index 67c3f6363..8a1f51b51 100644
--- a/hack/packages.txt
+++ b/hack/packages.txt
@@ -3,6 +3,9 @@ rsync
 cloud-init
 /usr/bin/flock
 /usr/bin/awk
+# Needed by tmt avc check
+audit
+policycoreutils
 # Required by install-to-filesystem-var-mount test
 parted
 lvm2
diff --git a/tmt/plans/integration.fmf b/tmt/plans/integration.fmf
index 46c58eb55..0a9d4368d 100644
--- a/tmt/plans/integration.fmf
+++ b/tmt/plans/integration.fmf
@@ -2,12 +2,6 @@
 provision:
   how: virtual
   image: $@{test_disk_image}
-# bootc probes for SELinux mac_admin/install_t capability by attempting
-# chcon with an intentionally invalid label (see lsm.rs test_install_t).
-# This generates expected AVC denials that rhel-ci's injected AVC check
-# would otherwise flag as test failures.
-environment:
-    AVC_ERROR: +no_avc_check
 prepare:
   # Install image mode system on package mode system
   # Do not run on image mode VM running on Github CI and Locally
diff --git a/tmt/tests/tests.fmf b/tmt/tests/tests.fmf
index b26b3ad9c..0b66f4e89 100644
--- a/tmt/tests/tests.fmf
+++ b/tmt/tests/tests.fmf
@@ -1,6 +1,13 @@
 # THIS IS GENERATED CODE - DO NOT EDIT
 # Generated by: cargo xtask tmt
 
+# bootc probes for SELinux mac_admin capability by attempting chcon with
+# an intentionally invalid label, which generates expected AVC denials.
+# Report as informational only in OSCI gating test
+check:
+  - how: avc
+    result: info
+
 /test-01-readonly:
   summary: Execute booted readonly/nondestructive tests
   duration: 30m