The username to use when connecting to the database

User to run upsmon as. upsmon.conf will have its owner set to this user

Additional user accounts to be created automatically by the system

User to run qui as.

The name of an existing user account to use to own the ZNC server process

Definition of systemd per-user units.

User the bee binary should execute under.

User running H2O service

User account under which MPD runs.

User under which the VDR service runs.

Definition of systemd per-user path units.

User to log-in as.

User under which Node-RED runs

User to run Agnos as

User to run u9fs under.

The user as which to run the Ergo node.

User under which the Kubo daemon runs

Which unix user ttyd should run as.

User from which you run MAME binary.

User account under which unit runs.

User under which the Loki service runs.

User account under which Ombi runs.

User account under which Plex runs.

User account under which NATS runs.

User account under which tcsd runs.

User account under which nscd runs.

The user to run oCIS as

User to run the service.

User under which museum runs

User account where Apache NiFi runs.

Subordinate user ids that user is allowed to use

User account under which caddy runs.

User account under which MySQL runs.

User account under which both the update daemon and the web-application run.

The name of the user account

User account under which maddy runs.

The user to run as

User account under which db-rest runs.

User the ntfy-sh server runs under.

User for the dspam daemon.

User davis runs as.

User which runs Nexus3.

User to own the seatd socket

mailinglist local user

The Omnom service user.

User under which Stash runs.

Definition of systemd per-user slice units.

Definition of systemd per-user timer units.

User to run Zeyple as.

The user to run Memos as.

If set to false, the user account will not be created

User account under which ytdl-sub runs.

User account under which legit runs.

User account under which gitea runs.

The user the aMule daemon should run as

User account under which Komga runs.

User the hound daemon should execute under.

User account under which bosun runs.

User account under which jboss runs.

User account under which slskd runs.

User account under which nginx runs.

User account under which rqbit runs.

User running Movim service

User account under which uWSGI runs.

User snipe-it runs as.

Cyrus IMAP user name

User account under which Apache Felix runs.

User to run the cgit service as.

User to use for running NIPAP services.

User account under which inadyn runs.

User account under which Sonarr runs.";

Set this option when you want to run the slurmctld daemon as something else than the default slurm user "slurm"

The name of an existing user to use to run the service

The user for the service

User under which the coder service runs.

The name of the column that contains a unix login name.

The user the nixops-dns daemon should run as

The user as which to run quorum.

User that has access to the device

The user to run Kismet as.

The user under which attic runs.

Artalk user name.

The user immich should run as.

User monica runs as.

User under which pretix should run.

Name of the Zammad user.

Webhook will be run under this user

User account under which Actual runs

User the Go

User account under which Lidarr runs.

System user to run Flarum

User account under which galene runs.

User account under which Akkoma runs.

User account under which bazarr runs.

User account under which deluge runs.

User account under which Kavita runs.

User to run cross-seed as.

System user for running opkssh

User account under which NZBGet runs

User account under which Radarr runs.

User account under which WebDAV runs.

User under which Traefik runs.

The user's home directory.

The user to run code-server as

Definition of systemd per-user target units.

Definition of systemd per-user socket units.

User account under which prosody runs.

User to run gitlab and all related services.

User account under which the web-application run.

User to use when no root privileges are required.

User account under which Apache Tomcat runs.

User account name under which SFTPGo runs.

Subordinate group ids that user is allowed to use

User account under which to run ollama

The MQTT user to use

User under which dawarich runs

User to run the service as.

User under which pyLoad runs, and which owns the download directory.

User account under which Pocket ID runs.

User account under which Klipper runs

The existing user the Quassel daemon should run as

User under which the service should run

User under which Git daemon would be running.

Automatically allocate subordinate user and group ids for this user

The account UID

Per-user rules for creation, deletion and cleaning of volatile and temporary files automatically.

The user (and PostgreSQL database name) used to run the gancio server

The user account under which both the service and the web application run.

User name for RPC connections.

User the Go

User to run the Roon Server as.

User to run the Roon bridge as.

Username of the OpenGFW user.

User privileges for the server.

The user under which to run flexget.

The user to run Corteza under.

User to run the service as

User under which pretalx should run.

User under which Redmine is ran.

The user under which stunnel runs.

The user to run ZITADEL under.

The user 0bin should run as

The user the yandex-disk daemon should run as.

The user's primary group.

User account under which seafile runs.

User account under which haproxy runs.

User account under which Jackett runs.

User account under which graylog runs

User account under which couchdb runs.

User the jenkins server should execute under.

User account under which Forgejo runs.

User account under which Homebox runs.

User account under which cgminer runs

User account under which netdata runs.

User account under which owncast runs.

User account under which pleroma runs.

User account under which Readarr runs.

User account under which Polaris runs.

User account under which unbound runs.

User account under which MongoDB runs

User account under which MonetDB runs.

User account under which PdfDing runs

User account under which dolibarr runs.

User account under which pixelfed runs.

User part of the JID for XMPP user connection.

User part of the JID for XMPP user connection.

User account under which httpd children processes run

The user usbmuxd should use to run after startup.

The user for the service

What to call the Postfix user (must be used only for postfix).

User under which Podgrab runs, and which owns the download directory.

User account under which both the service and the web-application run.

Definition of systemd per-user service units.

Extra config options for systemd user instances

User to use when no root privileges are required

The name of the column in the log table to which the name of the user being authenticated is stored.

Start of the range of subordinate user ids that user is allowed to use.

Name of the user used to run the jupyter service

User to be used to perform backup.

The name of an existing user account under which the rsync process should run.

User account under which Calibre-Web runs.

User account under which firefly-iii runs.

Whether to create the home directory and ensure ownership as well as permissions to match the user.

The database user

Owner to assign to the SEV device.

Text of this systemd unit.

Dovecot user name.

The user of the service.

User for the daemon.

User for the daemon

Whether to enable or disable lingering for this user

User under which mastodon runs

The directory where user objects are stored.

Username for the logcheck user.

User under which Kanboard runs.

User under which ejabberd is ran

Name of the LibreNMS user.

User agorakit runs as.

User under which to run collectd.

User under which FreshRSS runs.

The user to run crowdsec as

User ownership of service

User account under which headscale runs.

The user tuwunel is run as

Name of the user to change once the server is up.

User account under which this instance of redis-server runs.

Specifies the owner of the wiki directory

User account under which firebird runs.

User account under which Jellyfin runs.

User account under which airsonic runs.

User account under which influxdb runs

User account under which Cloudlog runs.

User account under which ErsatzTV runs.

The user account under which OliveTin runs.

User account under which OpenTSDB runs.

User account under which rtorrent runs.

User account under which slapd runs.

User under which the oxidized service runs.

User account under which Peertube runs.

User account under which sniproxy runs.

User account under which Tautulli runs.

User account under which Whisparr runs.

Indicates if the user is a system user or not

Database user

User under which to run the service

User account under which Portunus runs its webserver.

User to run under when setuid is not enabled.

Gitolite user account

Mail username.

User account under which this pool runs.

User account under which Pingvin Share runs.

User the jenkins slave agent should execute under.

Message of the day shown to users when they log in.

Existing user that the CGI process will belong to. (Default almost surely will do.)

Count of subordinate user ids

The user Quickwit runs as

The user Temporal runs as

The name of services's user

The user as which to run bitcoind.

The user to run OpenCloud as

If the specified units are stopped or restarted, then this unit is stopped or restarted as well.

Start the specified units when this unit is started.

The user to run Syncthing as

Optional username used for authentication with redis.

Per-user rules for creation, deletion and cleaning of volatile and temporary files automatically

mjpg-streamer user name.

The name of this systemd unit, including its extension

The name of this systemd unit, including its extension

The user under which calibre-server runs.

User under which Etebase server runs.

Mail username.

User for the daemon.

User for the MySQL database.

User under which Anuko Time Tracker runs.

If the specified units are started at the same time as this unit, delay this unit until they have started.

User under which CommaFeed runs.

User bookstack runs as

User running bitmagnet

User under which blendfarm runs.

The user to run the service as.

The user to run Memcached as

The user pgbouncer is run as.

User to run the service as

User under which Navidrome runs.

User under which Paperless runs.

The user's home directory mode in numeric format

Subordinate user ids that user is allowed to use

The set of packages that should be made available to the user

Charybdis IRC daemon user.

User account under which Kapacitor runs

Run Apache Cassandra under this user.

The user account under which GlitchTip runs.

User account under which the service runs.

User account under which recyclarr runs.

User which runs the ruTorrent service.

User account under which Pinchflat runs.

User account under which RethinkDB runs.

User account under which stargazer runs.

User account under which Moonraker runs.

The path to the user's shell

User account under which Portunus runs its LDAP server.

User name who owns the socket file.

Database user.

Owner to assign to the SEV guest device.

What to call the dedicated user under which infinoted is run

Username for webconsole access

Start of the range of subordinate group ids that user is allowed to use.

User for hg.sr.ht.

If the specified units are stopped or restarted, then this unit is stopped or restarted as well.

If the specified units are stopped or restarted, then this unit is stopped or restarted as well.

Start the specified units when this unit is started.

Start the specified units when this unit is started.

User account under which sitespeed-io runs.

Attributes for user's entry in pam_mount.conf.xml

User for git.sr.ht.

User for man.sr.ht.

User for hub.sr.ht.

The name of this systemd unit, including its extension

The name of this systemd unit, including its extension

Like ‘requires’, but in addition, if the specified units unexpectedly disappear, this unit will be stopped as well.

Serve entries from services for the current user

Set the date on which the user's account will no longer be accessible

As which user the backup should run.

Enable specific user icons for history view

User account under which Tandoor runs.

The database user

The database user

User name for RPC connections.

The user to run Handheld Daemon with.

User the buildbot server should execute under.

User the buildbot Worker should execute under.

User which runs PlantUML server.

Global user rules for creation, deletion and cleaning of volatile and temporary files automatically

If the specified units are started at the same time as this unit, delay them until this unit has started.

If the specified units are started at the same time as this unit, delay this unit until they have started.

If the specified units are started at the same time as this unit, delay this unit until they have started.

User name used for connection to the database

The user's auxiliary groups.

User that runs smokeping and (optionally) thttpd

User for todo.sr.ht.

User for meta.sr.ht.

Database user.

Database user.

Path to encrypted luks device that contains the user's home directory.

Whether to enable systemd user units systemd-tmpfiles-setup.service and systemd-tmpfiles-clean.timer.

Indicates whether this is an account for a “real” user

User account under which peertube-runner runs.

User account under which Suwayomi-Server runs.

User which runs tailscale-nginx-auth

User account for the service

Path to the user data directory.

The database user for immich.

Aliases of that unit.

Aliases of that unit.

SMTP login name.

Username used to access the GNS3 Server.

The name of the user to use for Wakapi.

Database user.

Duplicati runs as it's own user

User for Taskserver.

Only applies if enableVirtualUsers is true

User account to run vdirsyncer as, otherwise as a systemd dynamic user

User under which filesender runs.

User for lists.sr.ht.

User for pages.sr.ht.

User for paste.sr.ht.

User to run homebridge as.

User to run the service as

User under which Govee2MQTT should run.

User under which photoprism runs.

User microsocks runs as.

The user to run Reposilite under.

The user Linkwarden should run as.

The directory to store all user data, such as flow and credential files and all library data

User account name under which to run shairport-sync

Username from upsd.users for accessing this UPS

Keep this unit running as long as the listed units are running

Keep this unit running as long as the listed units are running

Like ‘requires’, but in addition, if the specified units unexpectedly disappear, this unit will be stopped as well.

Like ‘requires’, but in addition, if the specified units unexpectedly disappear, this unit will be stopped as well.

If set to false, the user account will not be created

Domain part of the JID for XMPP user connection.

Domain part of the JID for XMPP user connection.

If the specified units are stopped or restarted, then this unit is stopped or restarted as well.

If the specified units are stopped or restarted, then this unit is stopped or restarted as well.

Start the specified units when this unit is started.

Start the specified units when this unit is started.

User account under which scollector runs.

User account under which Szurubooru runs.

User which runs the Mattermost service.

User account under which privatebin runs.

User account under which LubeLogger runs.

User to use to run nullmailer-send.

The name of this systemd unit, including its extension

The name of this systemd unit, including its extension

If the specified units are started at the same time as this unit, delay them until this unit has started.

If the specified units are started at the same time as this unit, delay them until this unit has started.

Database user.

Database user.

PostgreSQL user

Database user.

The user borg is run as

Username used for all administration functions.

Whether to enable GNOME User Share, a user-level file sharing service for GNOME.

Settings for pam_mysql

The distinguished name of the search base.

Units that want (i.e. depend on) this unit

Units that want (i.e. depend on) this unit

Specifies the (clear text) password for the user

Aliases of that unit.

Aliases of that unit.

The user to run openvscode-server as

If the specified units are started at the same time as this unit, delay this unit until they have started.

If the specified units are started at the same time as this unit, delay this unit until they have started.

Keeps the specified running while this unit is running

User to run the icecream daemon as

The user OpenSearch runs as

User under which the Periphery agent runs.

Name of the user the AutoSSH session should run as

User for builds.sr.ht.

Database user.

A list of one or more units that are activated when this unit enters the "failed" state.

A list of one or more units that are activated when this unit enters the "inactive" state.

Mail username.

Username for Loki.

A file containing the message of the day shown to users when they log in.

User account under which the service runs.

User account under which healthchecks runs.

Each attribute in this set specifies an option in the [Path] section of the unit

Each attribute in this set specifies an option in the [Unit] section of the unit

User name of file owner

Definition of systemd generators; see systemd.generator(5)

Database user.

User that runs the cronjob.

The user borg serve is run as

Keep this unit running as long as the listed units are running

Keep this unit running as long as the listed units are running

SMTP login name.

SMTP login name.

The user used for database authentication.

Units that want (i.e. depend on) this unit

Units that want (i.e. depend on) this unit

User for the Postgres database.

Like ‘requires’, but in addition, if the specified units unexpectedly disappear, this unit will be stopped as well.

Like ‘requires’, but in addition, if the specified units unexpectedly disappear, this unit will be stopped as well.

Shell commands executed to stop the service.

Count of subordinate group ids

A system user name for this client instance.

A system user name for this client instance.

User account under which HBase runs.

Database user.

Database user.

Database user.

Database user.

Database user.

The name of the user account

Start the specified units when this unit is started.

Keeps the specified running while this unit is running

If the specified units are started at the same time as this unit, delay them until this unit has started.

If the specified units are stopped or restarted, then this unit is stopped or restarted as well.

If the specified units are started at the same time as this unit, delay them until this unit has started.

Keeps the specified running while this unit is running

Database username.

Subordinate group ids that user is allowed to use

The content of /etc/asusd/asusd-user-ledmodes.ron

User to be used for the automatic login.

User used for authentication.

Specifies the hashed password for the user

MySQL user name.

Database user for FreshRSS.

The database user for dawarich.

The user to run DragonflyDB as

User meshtasticd runs as.

User under which Writefreely is ran.

Aliases of that unit.

Aliases of that unit.

The name of this systemd unit, including its extension

The user name used to log in to the ZNC web admin interface.

A list of one or more units that are activated when this unit enters the "failed" state.

A list of one or more units that are activated when this unit enters the "inactive" state.

A list of one or more units that are activated when this unit enters the "failed" state.

A list of one or more units that are activated when this unit enters the "inactive" state.

Database username.

Database user.

If true, the user's shell will be set to users.defaultUserShell.

User account under which FileBrowser runs.

User account under which CockroachDB runs

User account under which qbittorrent runs.

If set to true, you are free to add new users and groups to the system with the ordinary useradd and groupadd commands

User account under which firefly-iii-data-importer runs.

Automatically allocate subordinate user and group ids for this user

Each attribute in this set specifies an option in the [Unit] section of the unit

Each attribute in this set specifies an option in the [Unit] section of the unit

User account under which the web-application run.

User to run wyoming-satellite under.

If the specified units are started at the same time as this unit, delay this unit until they have started.

Shell commands executed after the service's main process has exited.

Units that want (i.e. depend on) this unit

Units that want (i.e. depend on) this unit

Additional groups to be created automatically by the system.

User under which this instance runs.

Packages added to the service's PATH environment variable

Keep this unit running as long as the listed units are running

Keep this unit running as long as the listed units are running

The hostname of the MySQL/MariaDB server

Shell commands executed before the service's main process is started.

The user to run Silverbullet as

If set to false, this unit will be a symlink to /dev/null

If set to false, this unit will be a symlink to /dev/null

Start the specified units when this unit is started, and stop this unit when the specified units are stopped or fail.

Mail username.

Database username.

The user of the file

Each attribute in this set specifies an option in the [Slice] section of the unit

Shell commands executed as the service's main process.

Like ‘requires’, but in addition, if the specified units unexpectedly disappear, this unit will be stopped as well.

Keeps the specified running while this unit is running

Keeps the specified running while this unit is running

Specifies the initial password for the user, i.e. the password assigned if the user does not already exist

AppVM user login

Shell commands executed after the service's main process is started.

Shell commands executed when the service's main process is reloaded.

Alias of users.users.

Users that can access upsd

Run Suricata with a specific user-id.

Configure unit start rate limiting

Database user.

Organizational unit to look up a user.

A list of one or more units that are activated when this unit enters the "failed" state.

A list of one or more units that are activated when this unit enters the "inactive" state.

A list of one or more units that are activated when this unit enters the "failed" state.

A list of one or more units that are activated when this unit enters the "inactive" state.

If the specified units are started at the same time as this unit, delay them until this unit has started.

Each attribute in this set specifies an option in the [Timer] section of the unit

The user under which Anubis is run

Each attribute in this set specifies an option in the [Unit] section of the unit

Each attribute in this set specifies an option in the [Unit] section of the unit

Start of the range of subordinate user ids that user is allowed to use.

Units that want (i.e. depend on) this unit

Aliases of that unit.

The user under which Anubis is run

If set to false, this unit will be a symlink to /dev/null

If set to false, this unit will be a symlink to /dev/null

Whether to enable or disable lingering for this user

Start the specified units when this unit is started, and stop this unit when the specified units are stopped or fail.

Start the specified units when this unit is started, and stop this unit when the specified units are stopped or fail.

Specifies the initial hashed password for the user, i.e. the hashed password assigned if the user does not already exist

Database user.

Unifi service user name.

Units that require (i.e. depend on and need to go down with) this unit

Units that require (i.e. depend on and need to go down with) this unit

If the specified units are started, then this unit is stopped and vice versa.

The user as which to run blockbook-frontend-‹name›.

Keep this unit running as long as the listed units are running

The user that runs the Amazon CloudWatch Agent.

User account under which FoundationDB runs.

User which runs the matterbridge service.

User account under which Transmission runs.

Path to file containing password for XMPP user connection.

Path to file containing password for XMPP user connection.

Configure unit start rate limiting

Configure unit start rate limiting

Disable checking that at least the root user or a user in the wheel group can log in using a password or an SSH key

SMTP username.

The name of the user for this authelia instance.

User account under which triggerhappy runs.

The hosts.hfaxd file entry in the spooling area will be symlinked to the location given here

User accounts for GRUB

Username to use for the postgres database.

Settings for libnss-mysql

Similar to requires

Keeps the specified running while this unit is running

To enable stylus and multi-touch support, the user you're going to use must be added to this list

The full path to a file that contains the hash of the user's password

If enabled, use TLS (encryption) over an LDAP (port 389) connection

The user to run the Phosh service.

Whether to include authentication against LDAP in login PAM.

Allow non-root users to specify the allow_other or allow_root mount options, see mount.fuse3(8).

Alias of services.tailscaleAuth.user.

Automatically start this unit at the given date/time, which must be in the format described in systemd.time(7)

Database user.

PostgreSQL user.

Database user.

Database user.

A list of one or more units that are activated when this unit enters the "failed" state.

A list of one or more units that are activated when this unit enters the "inactive" state.

A list of user modules to include in the znc.conf file.

The URL of the LDAP server.

A short description of the user account, typically the user's full name

Units that require (i.e. depend on and need to go down with) this unit

Units that require (i.e. depend on and need to go down with) this unit

If the specified units are started, then this unit is stopped and vice versa.

If the specified units are started, then this unit is stopped and vice versa.

The username/email in case SMTP auth is enabled.

Query to find a user in the LDAP database.

The database user for Linkwarden.

Each attribute in this set specifies an option in the [Unit] section of the unit

User name accepted by anki-sync-server.

By default, nixos will check that programs

Indicates if the user is a system user or not

The user names of the group members, added to the /etc/group file.

Start the specified units when this unit is started, and stop this unit when the specified units are stopped or fail.

Start the specified units when this unit is started, and stop this unit when the specified units are stopped or fail.

If set to false, this unit will be a symlink to /dev/null

If set to false, this unit will be a symlink to /dev/null

The path to the file containing the password for the user

The username used by netbird to connect to the coturn server.

Each attribute in this set specifies an option in the [Socket] section of the unit

The user of the file

User as which this instance of fcgiwrap will be run

Name of user to run the script under.

Configure unit start rate limiting

Arguments passed to the main process script

Configure unit start rate limiting

Database username.

Database username.

Username for the influxdb.

NNTP-Proxy user configuration

Similar to requires

Similar to requires

Whether to enable authentication against an LDAP server.

The database user (not applicable for sqlite3).

Alias of users.groups.

Maximum size of all uploaded files per user, in bytes

Database user.

For each item in this list, a ListenStream option in the [Socket] section will be created.

Override default locales within gancio

Allow the user to do certain things with upsd

Owner to assign to the SGX provisioning device.

The user and group to run nebula-lighthouse-service as.

Whether to let the nslcd daemon (nss-pam-ldapd) handle the LDAP lookups for NSS and PAM

Units that require (i.e. depend on and need to go down with) this unit

Units that require (i.e. depend on and need to go down with) this unit

If the specified units are started, then this unit is stopped and vice versa.

If the specified units are started, then this unit is stopped and vice versa.

A system group name for this client instance.

A system group name for this client instance.

User under which this instance runs.

The user continuwuity is run as.

The user as which to run the wasabibackend node.

Whether to create the home directory and ensure ownership as well as permissions to match the user.

Additional criteria for the query.

Start the specified units when this unit is started, and stop this unit when the specified units are stopped or fail.

If set to false, this unit will be a symlink to /dev/null

Whether to publish user services

The database user to connect as.

Database username.

Similar to requires

An arbitrary list of items such as derivations

Similar to requires

User to be set as owner of the UNIX socket.

Specifies the (clear text) password for the user

Configure unit start rate limiting

Name of the database user to initialise the database with

User account under which to run the Spreed signaling server.

The user associated with the reported computation results

RPC user for the bitcoin endpoint.

Unix User to run the server under

An arbitrary list of items such as derivations

Database username.

Configure unit start rate limiting

This option defines the default shell assigned to user accounts

Specifies the hashed password for the user

User name under which the pve exporter shall be run.

User name under which the nut exporter shall be run.

User name under which the kea exporter shall be run.

User name under which the sql exporter shall be run.

User name under which the zfs exporter shall be run.

User name under which the lnd exporter shall be run.

If the specified units are started, then this unit is stopped and vice versa.

Units that require (i.e. depend on and need to go down with) this unit

Text of the file.

The user names of the group members, added to the /etc/group file.

The group GID

An arbitrary list of items such as derivations

An arbitrary list of items such as derivations

Whether to enable authentication against a MySQL/MariaDB database.

Count of subordinate user ids

User name under which the snmp exporter shall be run.

User name under which the bind exporter shall be run.

User name under which the ipmi exporter shall be run.

User name under which the flow exporter shall be run.

User name under which the nats exporter shall be run.

User name under which the mail exporter shall be run.

User name under which the ping exporter shall be run.

User name under which the bird exporter shall be run.

User name under which the ebpf exporter shall be run.

User name under which the json exporter shall be run.

User name under which the mqtt exporter shall be run.

User name under which the node exporter shall be run.

User name under which the knot exporter shall be run.

User to connect as

Each attribute in this set specifies an option in the [Service] section of the unit

The name of table that maps unique login names to the passwords.

User name under which the php-fpm exporter shall be run.

ID of the user in initrd.

User name under which the chrony exporter shall be run

Description of this unit used in systemd messages and progress indicators.

Change the squash user

An arbitrary list of items such as derivations

An arbitrary list of items such as derivations

User owning the certs.

Similar to requires

Configure unit start rate limiting

Configure unit start rate limiting

The name of the column or an SQL expression that indicates the status of the user

User name under which the nginx exporter shall be run.

User name under which the kafka exporter shall be run.

User name under which the redis exporter shall be run.

User name under which the fritz exporter shall be run.

User name under which the idrac exporter shall be run.

User name under which the jitsi exporter shall be run.

User name under which the dmarc exporter shall be run.

User name under which the v2ray exporter shall be run.

The user's home directory.

Unifi service user name.

Database username.

User name under which the frr exporter shall be run

Group under which to run the service

User account under which Audiobookshelf runs.

User account under which libretranslate runs.

Username

User to connect to the SMTP server.

Whether the service should be restarted during a NixOS configuration switch if its definition has changed.

A set of shell script fragments that are executed by a systemd user service when a NixOS system configuration is activated

Actions to be included in a user.action file

Configuration file that correspond to user-mapping.xml.

Configuration file that correspond to user-mapping.xml.

The name of the group

Username for JSON-RPC connections.

For each item in this list, a ListenDatagram option in the [Socket] section will be created.

An arbitrary list of items such as derivations

An arbitrary list of items such as derivations

Path to store homebridge user files (needs to be writeable).

Specifies the time limit (in seconds) to use when performing searches

Description of this unit used in systemd messages and progress indicators.

Description of this unit used in systemd messages and progress indicators.

Whether to enable the systemd JSON user/group record lookup service .

Whether to append a minimal default PATH environment variable to the service, containing common system utilities.

Filters to be included in a user.filter file

Specifies the initial password for the user, i.e. the password assigned if the user does not already exist

Specifies the directory that user data is kept in

The set of packages that should be made available to the user

User name under which the statsd exporter shall be run.

User name under which the dnssec exporter shall be run.

User name under which the script exporter shall be run.

User name under which the mysqld exporter shall be run.

User name under which the deluge exporter shall be run.

User name under which the domain exporter shall be run.

User name under which the fastly exporter shall be run.

User name under which the restic exporter shall be run.

User name under which the pihole exporter shall be run.

User name under which the shelly exporter shall be run.

User name under which the rspamd exporter shall be run.

User name under which the tibber exporter shall be run.

Specifies the initial hashed password for the user, i.e. the hashed password assigned if the user does not already exist

An arbitrary list of items such as derivations

An arbitrary list of items such as derivations

List of user-password pairs to provide to the sync server.

Local Mattermost database username.

The account UID

Configure unit start rate limiting

Configure unit start rate limiting

Start of the range of subordinate group ids that user is allowed to use.

If set, a changed unit is restarted by calling systemctl stop in the old configuration, then systemctl start in the new one

User name under which the nvidia-gpu exporter shall be run.

Database username.

The name of the column in the log table to which the name of the user being authenticated is stored.

Outgoing SMTP user.

User name under which the rtl_433 exporter shall be run.

Path of the source file.

User name under which the systemd exporter shall be run.

User name under which the bitcoin exporter shall be run.

User name under which the varnish exporter shall be run.

User name under which the apcupsd exporter shall be run.

User name under which the ecoflow exporter shall be run.

User name under which the dovecot exporter shall be run.

User name under which the process exporter shall be run.

User name under which the dnsmasq exporter shall be run.

User name under which the libvirt exporter shall be run.

User name under which the sabnzbd exporter shall be run.

User name under which the mongodb exporter shall be run.

User name under which the postfix exporter shall be run.

User name under which the klipper exporter shall be run.

User name under which the unbound exporter shall be run.

Description of this unit used in systemd messages and progress indicators.

Description of this unit used in systemd messages and progress indicators.

Group the user belongs to in initrd.

The user's primary group.

Whether the service should be reloaded during a NixOS configuration switch if its definition has changed

Set the date on which the user's account will no longer be accessible

An arbitrary list of items such as derivations

User to run the program.

The SMTP server username.

The IMAP server username.

The default home directory for normal users.

An arbitrary list of items such as derivations

Database user.

Linux user to authorize

Whether to generate the password files at build time and store them directly in the system closure, without requiring any services at boot time

Username for mining server

Configure unit start rate limiting

User name under which the py-air-control exporter shall be run.

Indicates whether this is an account for a “real” user

User name under which the mailman3 exporter shall be run.

Let the user initiate specific instant commands

Choose users database file to use for authentication

Environment variables passed to the service's processes.

Specifies whether userlistFile is a list of user names to allow or deny access

User name under which the influxdb exporter shall be run.

User name under which the opensense exporter shall be run.

User name under which the smartctl exporter shall be run.

User name under which the fritzbox exporter shall be run.

User name under which the mikrotik exporter shall be run.

User name under which the nginxlog exporter shall be run.

User name under which the postgres exporter shall be run.

User name under which the unpoller exporter shall be run.

User name under which the graphite exporter shall be run.

User name under which the blackbox exporter shall be run.

User name under which the keylight exporter shall be run.

User name under which the collectd exporter shall be run.

User account under which changedetection-io runs.

Description of this unit used in systemd messages and progress indicators.

The server will put all the budget files in this directory as binary blobs.

The user to login as.

The full path to a file that contains the hash of the user's password

The group GID

Paths to the user dictionary files for MaryTTS.

User name under which the imap-mailstat exporter shall be run.

Whether to include lookup against LDAP in NSS.

Database user.

Defines how unit configuration is provided for systemd:

asDropinIfExists creates a unit file when no unit file is provided by the package otherwise it creates a drop-in file named overrides.conf.

asDropin creates a drop-in file named overrides.conf

Defines how unit configuration is provided for systemd:

asDropinIfExists creates a unit file when no unit file is provided by the package otherwise it creates a drop-in file named overrides.conf.

asDropin creates a drop-in file named overrides.conf

Specifies the time limit (in seconds) to use when connecting to the directory server

User name under which the surfboard exporter shall be run.

User name under which the tailscale exporter shall be run.

User name under which the wireguard exporter shall be run.

User name under which the rasdaemon exporter shall be run.

User name under which the borgmatic exporter shall be run.

User name under which the smokeping exporter shall be run.

User name under which the pgbouncer exporter shall be run.

User name under which the nextcloud exporter shall be run.

User name under which the junos-czerwonk exporter shall be run.

Configures the user domain, if enabled

A list of URIs referencing documentation for this unit or its configuration.

Username for database connections.

If set, a changed unit is never assumed to be socket-activated on configuration switch, even if it might have associated socket units

The name of the group

RPC user information for JSON-RPC connections.

Defines how unit configuration is provided for systemd:

asDropinIfExists creates a unit file when no unit file is provided by the package otherwise it creates a drop-in file named overrides.conf.

asDropin creates a drop-in file named overrides.conf

Defines how unit configuration is provided for systemd:

asDropinIfExists creates a unit file when no unit file is provided by the package otherwise it creates a drop-in file named overrides.conf.

asDropin creates a drop-in file named overrides.conf

User name.

The name of the database containing the users

A list of URIs referencing documentation for this unit or its configuration.

A list of URIs referencing documentation for this unit or its configuration.

User name under which the buildkite-agent exporter shall be run.

User name under which the scaphandre exporter shall be run.

User name under which the storagebox exporter shall be run.

Extra configuration options that will be added verbatim at the end of the ldap configuration file (ldap.conf(5))

User part of the JID.

If enabled, produces logs with detailed messages that describes what pam_mysql is doing

Username to connect with psycopg2, set to null when using sqlite3.

Whether to enable oomd on all user slices (user@.slice) and all user owned slices.

Defines how unit configuration is provided for systemd:

asDropinIfExists creates a unit file when no unit file is provided by the package otherwise it creates a drop-in file named overrides.conf.

asDropin creates a drop-in file named overrides.conf

Defines how unit configuration is provided for systemd:

asDropinIfExists creates a unit file when no unit file is provided by the package otherwise it creates a drop-in file named overrides.conf.

asDropin creates a drop-in file named overrides.conf

The user's home directory mode in numeric format

Add the necessary actions for a upsmon process to work

User name under which the exportarr-lidarr exporter shall be run.

User name under which the exportarr-sonarr exporter shall be run.

User name under which the exportarr-radarr exporter shall be run.

User name under which the exportarr-bazarr exporter shall be run.

A list of URIs referencing documentation for this unit or its configuration.

A list of URIs referencing documentation for this unit or its configuration.

If true, requests in the form /~user/page.html are rewritten to take the file public_html/page.html from the home directory of the user.

Whether to enable user-configurable Samba shares.

The path to the user's shell

Enable running shellcheck on the generated scripts for this unit

User name under which the exportarr-readarr exporter shall be run.

User name under which the artifactory exporter shall be run.

Attributes for user's entry in pam_mount.conf.xml

Defines how unit configuration is provided for systemd:

asDropinIfExists creates a unit file when no unit file is provided by the package otherwise it creates a drop-in file named overrides.conf.

asDropin creates a drop-in file named overrides.conf

SQL query for the getpwnam syscall.

SQL query for the getgrgid syscall.

SQL query for the getgrnam syscall.

SQL query for the getspnam syscall.

SQL query for the getspent syscall.

SQL query for the getgrent syscall.

SQL query for the getpwuid syscall.

SQL query for the getpwent syscall.

Whether to install a user service for the Bloop server

A list of URIs referencing documentation for this unit or its configuration.

The name of the table used for password alteration

Used for optionally authenticating with Elasticsearch.

The user's auxiliary groups.

Path to encrypted luks device that contains the user's home directory.

Users to include in initrd.

User name under which the exportarr-prowlarr exporter shall be run.

The distinguished name to use to bind to the LDAP server when the root user tries to modify a user's password.

Specifies the path to a file containing the clear text password for the account

The default encryption method to use for passwordCrypt = 1.

The name of the table to which logs are written.

Username for Loki.

User name under which the modemmanager exporter shall be run.

Maximum number of concurrent clients allowed.

User directory, relative to root.

Database user.

A short description of the user account, typically the user's full name

The duration in time a user invitation remains valid before expiring

Group for the default nutmon user

The path to a file containing the credentials with which to bind to the LDAP server if the root user tries to change a user's password.

This option disables password/group lookups

By default, nixos will check that programs

Username to authenticate with.

Set the path to file where the user's credentials are stored

How many invites each user is issued upon registration (only applicable if open registration is disabled).

The admin user username.

Specifies if mapped OpenID Connect accounts are automatically created upon successful authentication

A list of verbatim OpenSSH public keys that should be added to the user's authorized keys

The string to represent the user_text label.

The path to a file containing the credentials to use when binding to the LDAP server (if not binding anonymously).

The admin account username.

Unifi service user name.

A list of files each containing one OpenSSH public key that should be added to the user's authorized keys

Whether to install a user service for the Emacs daemon

Do not allow more than this many server connections per user (regardless of database)

Extra configuration options that will be added verbatim at the end of the nslcd configuration file (nslcd.conf(5)).

Username for basic http authentication.

Whether to manage whether users linger or not.

See userlistFile.

SQL query for the memsbygid syscall.

SQL query for the gidsbymem syscall.

Enables logging of authentication attempts in the MySQL database.

The path to use as hound's $HOME

Mailman3 Core REST API username.

Count of subordinate group ids

Unprivileged user to drop privileges to.

Under which user/group the specified command is allowed to run

If true, the user's shell will be set to users.defaultUserShell.

Under which user/group the specified command is allowed to run

Whether to allow creation of user namespaces

Newline separated list of names to be allowed/denied if userlistEnable is true

Specifies the policy to use for reconnecting to an unavailable LDAP server

The Niri user service unit to bind IIO-Niri's user service unit to.

Whether to enable userborn.

Optional

The user under which the container should run.

The usernames / UIDs this rule should apply for.

The usernames / UIDs this rule should apply for.

Specifies the path to a file containing the password hash for the account, generated with grub-mkpasswd-pbkdf2

When enabled, the stargazer process will be given CAP_SETGID and CAP_SETUID so that it can run cgi processes as a different user

Ignore the user configures. Warning: When this is enabled, the user config files are totally ignored and the user dict can't be saved and loaded.

MQTT server access username.

The name of the column in the log table to which the description of the performed operation is stored.

A list of verbatim principal names that should be added to the user's authorized principals.

The usernames / UIDs this rule should apply for.

If the default user "gocd-agent" is configured then this is the primary group of that user.

The name of the column that contains a (encrypted) password string.

If a user fails to authenticate with a second factor, Duo Unix will prompt the user to authenticate again

Username for login.

The name of the column in the log table to which the pid of the process utilising the pam_mysql authentication service is stored.

Name of the user on the MySQL/MariaDB server

The name of the column in the log table to which the timestamp of the log entry is stored.

Members of this group can control wpa_supplicant.

Password for the user

The path to the user's shell in initrd.

The following authentication modes are available: Open -- Accept connections from anyone, use NickServ for user authentication

The userborn package to use.

Proxy account name, without the possibility to include domain name ('at' sign is interpreted literally).

Discourse database user.

The full path to a file that contains the user's (clear text) password

Whether users are included.

Username to use when connecting to Elasticsearch, if required.

The path to use as JENKINS_HOME

If the default user "jenkins" is configured then this is the primary group of that user.

If the default user "gocd-server" is configured then this is the primary group of that user.

Maximum number of concurrent connections to the proxy for this user

Whether to enable writing to the Nix store as a remote store via SSH

Your yandex.com login name.

Specification (in the format described by systemd.time(7)) of the time at which the LoTW user update will occur.

If enabled, users are created with systemd-sysusers instead of with the custom update-users-groups.pl script

Specifies if mapped OpenID Connect accounts are automatically created upon successful authentication

Whether to enable the Etebase server

Login shell of the remote user

Allow users of the wpa_supplicant group to control wpa_supplicant through wpa_gui or wpa_cli

Username for the postgresql connection

Username to use when connecting to an external or manually provisioned database; has no effect when a local database is automatically provisioned

Username of the SMTP server for GitLab.

The name of the column in the log table to which the name of the remote host that initiates the session is stored

Override the username or UID (and optionally groupname or GID) used in the container.

User ID to return

Whether to configure zsh as an interactive shell

Members of this group can control wpa_supplicant.

Set to false to prohibit users from being able to sign up / create user accounts

Usernames to be added to the "openrazer" group, so that they can start and interact with the OpenRazer userspace daemon.

This is the config file for managing unprivileged user network administration access in LXC

Username to authenticate with.

Allow normal users to control wpa_supplicant through wpa_gui or wpa_cli

Whether to require that no two users/groups share the same uid/gid.

LDAP filter for users.

A list of names of users that have additional rights when connecting to the Nix daemon, such as the ability to specify additional binary caches, or to import unsigned NARs

The path to use as JENKINS_HOME

This is a comma-separated list of usernames

Name of the group members of which will be allowed to create usershares

A list of names of users (separated by whitespace) that are allowed to connect to the Nix daemon

Specifies the clear text password for the account

Whether to enable draw user backgrounds.

Redis username for authentication (for Redis ACL).

Enable saned network daemon for remote connection to scanners.

saned would be run from scanner user; to allow access to hardware that doesn't have scanner group you should add needed groups to this user.

Directory of sockets for controlling wpa_supplicant.

Per-user Pareto Security configuration.

Database user.

If the default slave agent user "jenkins" is configured then this is the primary group of that user.

Whether to ensure that this user is present or absent.

Group account under which inadyn runs.

Class that users must have.

Attrset of dconf profiles

Whether to configure system to use gphoto2

Load users and passwords from this file

Your factorio.com login credentials

Allow normal users to control wpa_supplicant through wpa_gui or wpa_cli

Username for JSON-RPC connections.

List of users granted permission to use CrossMacro.

Specifies the (clear text) password for the MQTT User.

Users that intend to use BenchExec

Username to use when connecting to an external or manually provisioned database; has no effect when a local database is automatically provisioned

Username for accessing the database.

LDAP-attribute that corresponds to the username-attribute in mailman.

Whether to enable exposing OpenSSH public keys defined in userdb

Whether to install a user service for Offlineimap

Which user or group the specified command is allowed to run as

Grants the user, created by the ensureUser attr, login permissions

List of users, use empty list for any.

Username for the postgresql connection

If set to "yes", using the bindings file /etc/multipath/bindings to assign a persistent and unique alias to the multipath, in the form of mpath

Bulk PDF import from consume directory

User part of the JID for the recorder.

Attribute for a users email.

Name of the user to log in

List of UIDs of all users for which this application is allowed location info access, Defaults to an empty string to allow it for all users.

Specifies the password hash for the account, generated with grub-mkpasswd-pbkdf2

Users to be added to the idevice group.

SMTP server username for email delivery

The user for connecting to the MySQL database

The user to authenticate as.

If false, a PulseAudio server is launched automatically for each user that tries to use the sound system

SHA-512 password hash (can be generated by mkpasswd -m sha-512 <password>)

Location of the dokuwiki users file

Specifies the path to a file containing the clear text password for the MQTT user

Username for JMX

Your users.yaml as a Nix attribute set

Number of nixbld user accounts created to perform secure concurrent builds

User part of the JID.

User for anonymous PDF creation

Username to authenticate against the SMTP relay

Indicates whether to allow the contents of the dataDir directory to be changed by the user at run-time

Username used for HQPlayer's WebUI

Specifies the hashed password for the MQTT User

Username or user ID of the user allowed to to fetch Tailscale TLS certificates for the node.

A list of user names that belong to the organization.

File containing the password accepted by anki-sync-server for the associated username

An attrset of clauses to grant to the user

The method to encrypt the user's password:

• 0 (or "plain"): No encryption

Path under which the stats socket is placed

Password accepted by anki-sync-server for the associated username. WARNING: This option is not secure

Specify which claims to derive user information from

User group under which nscd runs.

AutoConfig files can be used to set and lock preferences that are not covered by the policies.json for Mac and Linux

The login name of the search user

Whether to allow any user to lock the screen

Whether to enable new users to login if auth is enabled.

Users to provision.

Whether to periodically update the list of LoTW users

The group of the Guix build user pool.

The distinguished name to bind to the LDAP server with

Whether X authentication keys should be passed from the calling user to the target user (e.g. for su)

Specifies the path to a file containing the hashed password for the MQTT user

Username for this DDNS provider.

Allowed users and their secrets

A set of users and their passwords and ACLs.

Home directory for coder user.

Primary group of ntfy-sh user.

List of users who are denied to login via Samba.

Whether to give the container its own private UIDs/GIDs space (user namespacing)

The group of the file

The username to store inside the credentials file.

Name of the tpm device-owner and service user, set if applyUdevRules is set.

Log directory of the movim user which holds the application’s logs.

Maximum number of concurrent clients allowed.

Name of the web server user that forwards requests to services.phpfpm.pools.<name>.socket the fastcgi socket for Matomo if the nginx option is not used

The script to run when user log in, usually a window manager, e.g. "icewm", "xfce4-session" This is per-user overridable, if file ~/startwm.sh exists it will be used instead.

Arguments to the buserver process

Username used by SSH to login to remote host.

Name of a file containing the spiped key

Defines the name of the claim that contains the username in the provider's userinfo endpoint

If true, a system-wide PipeWire service and socket is enabled allowing all users in the "pipewire" group to use it simultaneously

The user that you will authenticate with in the Grafana webhook settings

Home directory of the grocy user which contains the application's state.

Whether to enable Restricted User Shell..

The username of the SMTP server.

AutoConfig files can be used to set and lock preferences that are not covered by the policies.json for Mac and Linux

The location of the original password files

Control client access to topics on the broker.

State directory of the movim user which holds the application’s state & data.

Path of a file containing the password for the unifi service user

Username for accessing the database.

Admin username

Initial user account for Apache NiFi

User used to connect to the database

Username for this DDNS provider.

By default, pam_mysql keeps the connection to the MySQL database until the session is closed

The username to login with.

Minimum user ID for auto-login user.

Units that want (i.e. depend on) this unit

Units that want (i.e. depend on) this unit

Units that want (i.e. depend on) this unit

Password HMAC-SHA-256 for JSON-RPC connections

A list of verbatim OpenSSH public keys that should be added to the user's authorized keys

Hardened service:

• runs as a dedicated user with minimal set of permissions (see caveats),
• restricts daemon configuration socket access to dedicated user group (you can grant access to it with users.users."<user>".extraGroups = [ netbird-‹name› ]),

Even though the local system resources access is restricted:

• CAP_NET_RAW, CAP_NET_ADMIN and CAP_BPF still give unlimited network manipulation possibilites,
• older kernels don't have CAP_BPF and use CAP_SYS_ADMIN instead,

Known security features that are not (yet) integrated into the module:

• 2024-02-14: rosenpass is an experimental feature configurable solely through --enable-rosenpass flag on the netbird up command, see the docs

Hardened service:

• runs as a dedicated user with minimal set of permissions (see caveats),
• restricts daemon configuration socket access to dedicated user group (you can grant access to it with users.users."<user>".extraGroups = [ netbird-‹name› ]),

Even though the local system resources access is restricted:

• CAP_NET_RAW, CAP_NET_ADMIN and CAP_BPF still give unlimited network manipulation possibilites,
• older kernels don't have CAP_BPF and use CAP_SYS_ADMIN instead,

Known security features that are not (yet) integrated into the module:

• 2024-02-14: rosenpass is an experimental feature configurable solely through --enable-rosenpass flag on the netbird up command, see the docs

Permissions granted for the services.syncoid.user user for local target datasets

If set, then the authenticating user must be a member of this group to use this module.

Whether to enable Newt, user space tunnel client for Pangolin.

Multi User Chat (MUC) configuration

Username for the admin account

A list of files each containing one OpenSSH public key that should be added to the user's authorized keys

Grants the user, created by the ensureUser attr, superuser permissions

The group of the file

Specifies whether the processes of a user should be killed when the user logs out

Whether to enable nano, a small user-friendly console text editor.

Specifies whether the processes of a user should be killed when the user logs out

Units that want (i.e. depend on) this unit

Units that want (i.e. depend on) this unit

Run daemons as user.

Set to true to automatically add new users to the main organization (id 1)

The username to connect to the remote InfluxDB server

If set, the service will register a new session with systemd's login manager

Path to a custom home page

Path in which to store user data

Whether to enable systemd home area/user account manager.

User to run mailman-web as

Whether to enable user-space rshim driver for the BlueField SoC.

A string identifying a specific variant or edition of the operating system suitable for presentation to the user

Units that want (i.e. depend on) this unit

Units that want (i.e. depend on) this unit

If enabled, NixOS will set up a kernel that will boot on crash, and leave the user in systemd rescue to be able to save the crashed kernel dump at /proc/vmcore

Whether to enable Monado user service.

Name the bot should appear with.

Text used as placeholder text on login page for login/username input.

A list of verbatim principal names that should be added to the user's authorized principals.

Username used to connect to the MQTT server.

Delimiter for address extension: so mail to user+test can be handled by ~user/.forward+test

The rshim-user-space package to use.

Mount points to be used by chunkserver for storage (see sfshdd.cfg(5))

Admin email.

By default pam-ussh reads the trusted user CA keys from /etc/ssh/trusted_user_ca

When invoked by root the mount.davfs daemon will run as this user

A file containing the password for the user of the MySQL/MariaDB server

A file containing a secure random string

The resolved shell path that users can inherit to set rush as their login shell

Password for default admin password

Units that want (i.e. depend on) this unit

Enable PAM mount system to mount filesystems on user login.

If true, the user is not required to enter a password.

Whether to enable dwm-status user service.

IP address on which RabbitMQ will listen for AMQP connections

When true, any user will be able to register

Username for the scrobble service.

In case of a virtual device, the user who owns it. null will not set owner, allowing access to any user.

The name of an existing user group under which the rsync process should run.

Run daemons as moosefs user instead of root for better security.

SMTP username

Primary username

Login username for the IMAP connection.

Specifies the user under whose account the AuthorizedKeysCommand is run

Do not generate a configuration and use gitea' installation wizard instead

The user file mode creation mask to use on home directories newly created by pam_mkhomedir.

Group assigned to the user and the webroot directory.

Path of a file containing the password for the unifi service user

Whether to enable a user service for the Emacs daemon

The state directory where Guix service will store its data such as its user-specific profiles, cache, and state files.

Message to display to the remote user before authentication is allowed.

XtreemFS home dir for the xtreemfs user.

Whether to enable Zammad, a web-based, open source user support/ticketing solution.

Default admin username.

Sync users.

OIDC userinfo URL endpoint.

Whether to enable i2c devices support

Group account under which Actual runs

SSH public key allowed to login as user btrbk to run remote backups.

Primary group of the Gitolite user account.

Name of the user to ensure.

Runtime directory of the movim user which holds the application’s caches & temporary files.

Default user to store mail for virtual users.

Whether to enable please, a Sudo clone which allows a users to execute a command or edit a file as another user .

Username for InfluxDB login.

Group account under which Klipper runs

Enables GnuPG agent with socket-activation for every user session.

Defines extra groups to which the tomcat user belongs.

Whether to enable ZITADEL, a user and identity access management platform.

HTTP username

Path to a file containing the default admin password

Units that want (i.e. depend on) this unit

Store tmux socket under /run, which is more secure than /tmp, but as a downside it doesn't survive user logout.

List of extra groups that the "gocd-agent" user should be a part of.

Group account under which MySQL runs.

State directory of the pixelfed user which holds the application's state and data.

Configuration files to load besides the immutable one defined by the NixOS module

HTTP username

output directory; ${HOME} will be expanded to the user's home directory, ${USER} will be expanded to the user name.

The username to log in as on the remote host

Defines the name of the claim that contains the username in the provider's userinfo endpoint

Permissions granted for the services.syncoid.user user for local target datasets

Whether to enable the RealtimeKit system service, which hands out realtime scheduling priority to user processes on demand

Whether to configure a setcap wrapper for tcpdump

Specify an alternative directory to store all the per-user configuration files.

Whether to enable interactively prompting for user creation on first boot .

Commands to run after new certificates go live

File containing the password for the SMTP user.

Group to use to run Zeyple.

An array of additional groups for the code-server user.

System wide configuration file for Speech Dispatcher

Path to the file which contains the actual base64 encoded key

TURN REST API flag

Maximum number of client connections allowed

A unique ID that links the agent to Pareto Cloud

Configures the old Prosody builtin HTTP server to handle user uploads.

Whether to use the root user when generating certs

List of extra groups that the "jenkins" user should be a part of.

List of extra groups that the "gocd-server" user should be a part of.

Whether to set up the user space part of the Advanced Linux Sound Architecture (ALSA)

Group of user running bitmagnet

Group which rethinkdb user belongs to.

Whether to enable a modern and responsive user interface for Klipper.

HTTP username

Users allowed to use incrontab

When an IMAP event of interest occurs, this sieve script is executed after any user script respectively

Host to use for the destination dataset

Specifies the username to use when authenticating to the database.

Plugin to be used for process tracking on a job step basis

Username for connecting to Nextcloud

Sets the default UI theme. system matches the user's system theme.

Defines Anuko Time Tracker default language

Remap all users to "nobody"

Automatically login user on remote or other kind of externally supplied authentication, otherwise redirect to login form as normal

Operate in single user mode, disables all functionality related to multiple users and authentication

Text used as placeholder text on login page for password input.

Activate the asusd-user service.

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable kTLS support

Configures the http_file_share module to handle user uploads

Whether to enable PdfDing service

When an IMAP event of interest occurs, this sieve script is executed before any user script respectively

Whether to support multi-user mode by enabling the Disnix D-Bus service

Whether the nix-channel command and state files are made available on the machine

Settings written to user/config/system.yaml.

If true, do not ask for a password again for some time after the user successfully authenticates.

Configuration file for persisting runtime changes

What to call the primary group of the dedicated user under which infinoted is run

Path of a file containing the password for Loki

Whether to enable kTLS support

Whether to enable creating a own Dovecot PAM service and configure PAM user logins.

The command the user is allowed to run

Specifies location of CouchDB view index files

Primary group of buildbot user.

Whether to enable ‘oidentd’, an implementation of the Ident protocol (RFC 1413)

Whether to enable Portunus, a self-contained user/group management and authentication service for LDAP.

Location of the riemann-base dir

Whether to create database and user on the local machine if they do not exist

An attribute set of database instances as described in: https://pgbackrest.org/configuration.html#section-stanza

Each instance defaults to set pg-host to the attribute's name

Primary group of buildbot Worker user.

database user for postgres only

Pass HTTP Basic Auth, X-Forwarded-User and X-Forwarded-Email information to upstream.

File containing the matrix access token for the mjolnir user.

Whether the user has accepted to submit anonymous usage data

This option is opposite to lt-cred-mech. (TURN Server with no-auth option allows anonymous access)

Users allowed to authenticate even if not in allowedDomains.

A list of permissible login shells for user accounts

Whether to enable kTLS support

Whether to enable kTLS support

Name of the default administrator user

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable kTLS support

Database specific connection string for example:

• MySQL/Percona/MariaDB: user:password@tcp(host:3306)/documize
• MySQLv8+: user:password@tcp(host:3306)/documize?allowNativePasswords=true
• PostgreSQL: host=localhost port=5432 dbname=documize user=admin password=secret sslmode=disable
• MSSQL: sqlserver://username:password@localhost:1433?database=Documize or sqlserver://sa@localhost/SQLExpress?database=Documize

Range of user IDs used for the creation of regular users by useradd or newusers.

Range of user IDs used for the creation of regular users by useradd or newusers.

Path to per-user password file.

Use this option to limit user access to resources.

GitLab state directory

Enables GnuPG network certificate management daemon with socket-activation for every user session.

Whether to start a user service to run mouse-actions on startup.

Group where a user must be a member of to gain superuser rights.

Username to authenticate with the target device.

Enable PAM mount (pam_mount) system to mount filesystems on user login.

The path to the SSH private key with which to authenticate on the build machine

Options used for the default rules, granting root and the wheel group permission to run any command as any user.

Determines whether to check for updates and alert the user about them in the UI.

This option will ensure that team memberships for OpenID Connect users are dynamic and synchronized with membership of OpenID Connect groups or assigned roles

Options used for the default rules, granting root and the wheel group permission to run any command as any user.