| services.zitadel.steps | Contents of the database initialization config file
|
| users.ldap.bind.passwordFile | The path to a file containing the credentials to use when binding
to the LDAP server (if not binding anonymously).
|
| networking.supplicant.<name>.configFile.path | External wpa_supplicant.conf configuration file
|
| services.strongswan.connections | A set of connections and their options for the ‘conn xxx’
sections of the ipsec.conf file.
|
| services.xserver.xkb.extraLayouts.<name>.keycodesFile | The path to the xkb keycodes file
|
| programs.tsmClient.defaultServername | If multiple server stanzas are declared with
programs.tsmClient.servers,
this option may be used to name a default
server stanza that IBM TSM uses in the absence of
a user-defined dsm.opt file
|
| services.dawarich.secretKeyBaseFile | Path to file containing the secret key base
|
| services.printing.cups-pdf.instances.<name>.confFileText | This will contain the contents of cups-pdf.conf for this instance, derived from settings
|
| services.wgautomesh.gossipSecretFile | File containing the gossip secret, a shared secret key to use for gossip
encryption
|
| programs.neovim.runtime | Set of files that have to be linked in runtime.
|
| networking.getaddrinfo.reload | Determines whether a process should detect changes to the configuration file since it was last read
|
| services.postgres-websockets.pgpassFile | The password to authenticate to PostgreSQL with
|
| services.forgejo.dump.type | Archive format used to store the dump file.
|
| services.httpd.configFile | Override the configuration file used by Apache
|
| services.gollum.extraConfig | Content of the configuration file
|
| services.bacula-fd.port | This specifies the port number on which the Client listens for
Director connections
|
| services.cntlm.extraConfig | Additional config appended to the end of the generated cntlm.conf.
|
| security.pam.makeHomeDir.umask | The user file mode creation mask to use on home directories
newly created by pam_mkhomedir.
|
| services.bind.configFile | Overridable config file to use for named
|
| services.gatus.configFile | Path to the Gatus configuration file
|
| services.homer.enable | Whether to enable A dead simple static HOMepage for your servER to keep your services on hand, from a simple yaml configuration file.
.
|
| hardware.pcmcia.config | Path to the configuration file which maps the memory, IRQs
and ports used by the PCMCIA hardware.
|
| services.couchdb.argsFile | vm.args configuration
|
| services.gitea.extraConfig | Configuration lines appended to the generated gitea configuration file.
|
| services.syncoid.sshKey | SSH private key file to use to login to the remote system
|
| services.squid.configText | Verbatim contents of squid.conf
|
| services.sympa.mainDomain | Main domain to be used in sympa.conf
|
| services.turn-rs.settings | Turn-rs server config file
|
| services.opengfw.rulesFile | Path to file containing OpenGFW rules.
|
| services.patroni.dataDir | Folder where Patroni data will be written, this is where the pgpass password file will be written.
|
| users.extraUsers.<name>.subUidRanges | Subordinate user ids that user is allowed to use
|
| users.extraUsers.<name>.subGidRanges | Subordinate group ids that user is allowed to use
|
| services.cloudflared.tunnels.<name>.certificateFile | Account certificate file, necessary to create, delete and manage tunnels
|
| security.agnos.settings.accounts.*.certificates.*.key_output_file | Output path for the certificate private key
|
| services.duplicati.parameters | This option can be used to store some or all of the options given to the
commandline client
|
| services.kmonad.keyboards.<name>.extraGroups | Extra permission groups to attach to the KMonad instance for
this keyboard
|
| services.timesyncd.fallbackServers | The set of fallback NTP servers from which to synchronise
|
| services.xserver.xkb.extraLayouts.<name>.geometryFile | The path to the xkb geometry file
|
| services.vault-agent.instances.<name>.settings | Free-form settings written directly to the config.json file
|
| services.grafana.settings.smtp.password | Password used for authentication
|
| users.users.<name>.openssh.authorizedKeys.keyFiles | A list of files each containing one OpenSSH public key that should be
added to the user's authorized keys
|
| services.prometheus.scrapeConfigs.*.tls_config.ca_file | CA certificate to validate API server certificate with.
|
| security.pki.caCertificateBlacklist | A list of blacklisted CA certificate names that won't be imported from
the Mozilla Trust Store into
/etc/ssl/certs/ca-certificates.crt
|
| services.rustus.info_storage | Info storages are used to store information about file uploads
|
| services.snips-sh.environmentFile | Additional environment file as defined in systemd.exec(5)
|
| services.unpoller.unifi.controllers.*.pass | Path of a file containing the password for the unifi service user
|
| services.kanidm.provision.idmAdminPasswordFile | Path to a file containing the idm admin password for kanidm
|
| systemd.services.<name>.confinement.binSh | The program to make available as /bin/sh inside
the chroot
|
| services.xserver.desktopManager.wallpaper.mode | The file ~/.background-image is used as a background image
|
| services.chromadb.logFile | Specifies the location of file for logging output.
|
| services.postfix.config | The main.cf configuration file as key value set.
|
| services.klipper.configDir | Path to Klipper config file.
|
| services.kmscon.extraConfig | Extra contents of the kmscon.conf file.
|
| services.asusd.animeConfig.text | Text of the file.
|
| services.flannel.etcd.certFile | Etcd cert file
|
| services.code-server.socketMode | File mode of the socket.
|
| programs.rush.rules | The rule statement configures a GNU Rush rule
|
| services.asusd.asusdConfig.text | Text of the file.
|
| console.font | The font used for the virtual consoles
|
| services.oink.secretApiKeyFile | Path to a file containing the secret API key to use when modifying DNS records.
|
| services.llama-swap.tls.keyFile | Path to the TLS private key file
|
| services.squid.extraConfig | Squid configuration
|
| services.llama-swap.tls.certFile | Path to the TLS certificate file
|
| services.netbox.secretKeyFile | Path to a file containing the secret key.
|
| services.soju.configFile | Path to config file
|
| services.v2ray.configFile | The absolute path to the configuration file
|
| users.ldap.daemon.extraConfig | Extra configuration options that will be added verbatim at
the end of the nslcd configuration file (nslcd.conf(5)).
|
| services.pocket-id.environmentFile | Path to an environment file to be loaded
|
| services.pangolin.environmentFile | Path to a file containing sensitive environment variables for Pangolin
|
| services.librechat.credentials | Environment variables which are loaded from the contents of files at a file paths, mainly used for secrets
|
| services.i2pd.proto.httpProxy.keys | File to persist HTTPPROXY keys.
|
| services.duckdns.tokenFile | The path to a file containing the token
used to authenticate with DuckDNS.
|
| services.rspamd.locals.<name>.text | Text of the file.
|
| services.mysql.configFile | Override the configuration file used by MySQL
|
| services.sogo.ealarmsCredFile | Optional path to a credentials file for email alarms
|
| services.stash.jwtSecretKeyFile | Path to file containing a secret used to sign JWT tokens.
|
| services.journald.remote.settings.Remote.SplitMode | With "host", a separate output file is used, based on the
hostname of the other endpoint of a connection
|
| boot.binfmt.registrations.<name>.fixBinary | Whether to open the interpreter file as soon as the
registration is loaded, rather than waiting for a
relevant file to be invoked
|
| services.reposilite.database.passwordFile | Path to the file containing the password for the database connection
|
| users.users.<name>.openssh.authorizedKeys.keys | A list of verbatim OpenSSH public keys that should be added to the
user's authorized keys
|
| security.pam.services.<name>.allowNullPassword | Whether to allow logging into accounts that have no password
set (i.e., have an empty password field in
/etc/passwd or
/etc/group)
|
| services.privoxy.inspectHttps | Whether to configure Privoxy to inspect HTTPS requests, meaning all
encrypted traffic will be filtered as well
|
| boot.initrd.luks.devices | The encrypted disk that should be opened before the root
filesystem is mounted
|
| services.athens.extraConfig | Extra configuration options for the athens config file.
|
| services.athens.basicAuthPass | Password for basic auth
|
| programs.spacefm.enable | Whether to install SpaceFM and create /etc/spacefm/spacefm.conf.
|
| services.aria2.rpcSecretFile | A file containing the RPC secret authorization token
|
| programs.less.configFile | Path to lesskey configuration file.
configFile takes precedence over commands,
clearDefaultCommands, lineEditingKeys, and
envVariables.
|
| security.please.enable | Whether to enable please, a Sudo clone which allows a users to execute a command or edit a
file as another user
.
|
| hardware.deviceTree.name | The name of an explicit dtb to be loaded, relative to the dtb base
|
| services.goss.settings | The global options in config file in yaml format
|
| services.gitea.minioAccessKeyId | Path to a file containing the Minio access key id.
|
| services.gnunet.enable | Whether to run the GNUnet daemon
|
| services.dnsmasq.configFile | Path to the configuration file of dnsmasq.
|
| services.chrony.extraConfig | Extra configuration directives that should be added to
chrony.conf
|
| services.artalk.configFile | Artalk config file path
|
| services.howdy.settings | Howdy configuration file
|
| services.slurm.extraConfig | Extra configuration options that will be added verbatim at
the end of the slurm configuration file.
|
| services.netbox.enableLdap | Enable LDAP-Authentication for Netbox
|
| services.riemann.config | Contents of the Riemann configuration file
|