| users.ldap.base | The distinguished name of the search base.
|
| services.postsrsd.configurePostfix | Whether to configure the required settings to use postsrsd in the local Postfix instance.
|
| services.victorialogs.extraOptions | Extra options to pass to VictoriaLogs
|
| services.xserver.enableTearFree | Whether to enable the TearFree option in the first Device section.
|
| services.ympd.enable | Whether to enable ympd, the MPD Web GUI.
|
| services.writefreely.acme.enable | Whether or not to automatically fetch and configure SSL certs.
|
| <imports = [ pkgs.ghostunnel.services.default ]>.ghostunnel.disableAuthentication | Disable client authentication, no client certificate will be required.
|
| services.vikunja.database.user | Database user.
|
| users.defaultUserHome | The default home directory for normal users.
|
| systemd.network.networks.<name>.macvtap | A list of macvtap interfaces to be added to the network section of the
unit
|
| services.kanidm.provision.groups.<name>.members | List of kanidm entities (persons, groups, ...) which are part of this group.
|
| virtualisation.libvirtd.onShutdown | When shutting down / restarting the host what method should
be used to gracefully halt the guests
|
| services.veilid.settings.logging.terminal.level | The minimum priority of terminal events to be logged.
|
| services.xserver.windowManager.xmonad.config | Configuration from which XMonad gets compiled
|
| services.xserver.windowManager.twm.enable | Whether to enable twm.
|
| systemd.network.networks.<name>.dhcpServerConfig | Each attribute in this set specifies an option in the
[DHCPServer] section of the unit
|
| users.mysql.nss.getgrgid | SQL query for the getgrgid
syscall.
|
| systemd.timers.<name>.onFailure | A list of one or more units that are activated when
this unit enters the "failed" state.
|
| users.mysql.pam.logging.msgColumn | The name of the column in the log table to which the description
of the performed operation is stored.
|
| services.vdr.user | User under which the VDR service runs.
|
| services.zfs.autoReplication.recursive | Recursively discover snapshots to send.
|
| services.xtreemfs.dir.replication.enable | Whether to enable XtreemFS DIR replication plugin.
|
| systemd.network.networks.<name>.linkConfig | Each attribute in this set specifies an option in the
[Link] section of the unit
|
| services.zabbixWeb.nginx.virtualHost.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| services.rke2.tokenFile | File path containing the rke2 token to use when connecting to a server.
|
| services.vsftpd.ssl_tlsv1 | Only applies if ssl_enable is activated
|
| swapDevices.*.randomEncryption.source | Define the source of randomness to obtain a random key for encryption.
|
| systemd.user.units | Definition of systemd per-user units.
|
| services.wstunnel.clients.<name>.package | The wstunnel package to use.
|
| systemd.mounts.*.partOf | If the specified units are stopped or restarted, then this
unit is stopped or restarted as well.
|
| services.zapret.whitelist | Specify a list of domains to bypass
|
| services.lasuite-docs.settings.DATA_DIR | Path to the data directory
|
| systemd.network.netdevs.<name>.enable | Whether to manage network configuration using systemd-network
|
| virtualisation.xen.store.settings.quota.maxPath | Path limit for the quota system.
|
| users.ldap.extraConfig | Extra configuration options that will be added verbatim at
the end of the ldap configuration file (ldap.conf(5))
|
| services.xserver.windowManager.xmonad.ghcArgs | Command line arguments passed to the compiler (ghc)
invocation when xmonad.config is set.
|
| systemd.targets.<name>.restartTriggers | An arbitrary list of items such as derivations
|
| services.k3s.autoDeployCharts.<name>.repo | The repo of the Helm chart
|
| services.xserver.desktopManager.xfce.noDesktop | Don't install XFCE desktop components (xfdesktop and panel).
|
| services.yandex-disk.directory | The directory to use for Yandex
|
| services.zabbixWeb.httpd.virtualHost.locations.<name>.extraConfig | These lines go to the end of the location verbatim.
|
| services.zoneminder.enable | Whether to enable ZoneMinder
|
| virtualisation.podman.networkSocket.listenAddress | Interface address for receiving TLS connections.
|
| services.frr.pathd.options | Options for the FRR pathd daemon.
|
| services.frr.pbrd.options | Options for the FRR pbrd daemon.
|
| services.sslh.settings | sslh configuration
|
| virtualisation.qemu.drives.*.file | The file image used for this drive.
|
| services.unpoller.loki.interval | How often the events are polled and pushed to Loki.
|
| services.zeyple.rotateLogs | Whether to enable rotation of log files.
|
| services.writefreely.nginx.enable | Whether or not to enable and configure nginx as a proxy for WriteFreely.
|
| services.zabbixWeb.nginx.virtualHost.locations.<name>.extraConfig | These lines go to the end of the location verbatim.
|
| systemd.network.links.<name>.matchConfig | Each attribute in this set specifies an option in the
[Match] section of the unit
|
| services.kubernetes.addonManager.bootstrapAddons | Bootstrap addons are like regular addons, but they are applied with cluster-admin rights
|
| services.victoriatraces.listenAddress | TCP address to listen for incoming http requests.
|
| services.matrix-synapse.workers.<name>.worker_listeners | List of ports that this worker should listen on, their purpose and their configuration.
|
| services.zram-generator.enable | Whether to enable Systemd unit generator for zram devices.
|
| services.warpgate.settings.external_host | Configure the domain name of this Warpgate instance
|
| services.warpgate.settings.mysql.certificate | Path to MySQL listener certificate.
|
| systemd.targets.<name>.wantedBy | Units that want (i.e. depend on) this unit
|
| systemd.targets.<name>.wants | Start the specified units when this unit is started.
|
| services.zitadel.settings.TLS.Key | The TLS certificate private key, as a base64-encoded string
|
| services.unpoller.unifi.controllers.*.pass | Path of a file containing the password for the unifi service user
|
| services.xserver.displayManager.lightdm.greeters.gtk.enable | Whether to enable lightdm-gtk-greeter as the lightdm greeter.
|
| users.mysql.pam.userColumn | The name of the column that contains a unix login name.
|
| virtualisation.libvirtd.qemu.verbatimConfig | Contents written to the qemu configuration file, qemu.conf
|
| services.xl2tpd.enable | Whether to enable xl2tpd, the Layer 2 Tunnelling Protocol Daemon.
|
| users.ldap.server | The URL of the LDAP server.
|
| services.frr.mgmtd.extraOptions | Extra options to be appended to the FRR mgmtd daemon options.
|
| systemd.paths.<name>.overrideStrategy | Defines how unit configuration is provided for systemd:
asDropinIfExists creates a unit file when no unit file is provided by the package
otherwise it creates a drop-in file named overrides.conf.
asDropin creates a drop-in file named overrides.conf
|
| services.mautrix-signal.package | The mautrix-signal package to use.
|
| virtualisation.qemu.package | QEMU package to use.
|
| services.victoriatraces.extraOptions | Extra options to pass to VictoriaTraces
|
| services.victoriatraces.package | The victoriatraces package to use.
|
| services.victoriatraces.stateDir | Directory below /var/lib to store VictoriaTraces data
|
| services.wordpress.sites.<name>.package | The wordpress package to use.
|
| services.xserver.wacom.enable | Whether to enable the Wacom touchscreen/digitizer/tablet
|
| systemd.mounts.*.requires | Start the specified units when this unit is started, and stop
this unit when the specified units are stopped or fail.
|
| systemd.mounts.*.upheldBy | Keep this unit running as long as the listed units are running
|
| services.xserver.windowManager."2bwm".enable | Whether to enable 2bwm.
|
| system.autoUpgrade.flake | The Flake URI of the NixOS configuration to build
|
| systemd.user.targets.<name>.startLimitBurst | Configure unit start rate limiting
|
| services.k3s.manifests.<name>.target | Name of the symlink (relative to /var/lib/rancher/k3s/server/manifests)
|
| services.upower.percentageAction | When usePercentageForPolicy is
true, the levels at which UPower will take action
for the critical battery level
|
| services.jirafeau.nginxConfig.globalRedirect | If set, all requests for this host are redirected (defaults to 301,
configurable with redirectCode) to the given hostname.
|
| services.wlock.package | The wlock package to use.
|
| services.xserver.windowManager.xmonad.enableContribAndExtras | Enable xmonad-{contrib,extras} in Xmonad.
|
| systemd.slices.<name>.unitConfig | Each attribute in this set specifies an option in the
[Unit] section of the unit
|
| swapDevices.*.encrypted.label | Label of the unlocked encrypted device
|
| systemd.timers.<name>.startLimitBurst | Configure unit start rate limiting
|
| services.writefreely.admin.name | The name of the first admin user.
|
| services.wastebin.settings.WASTEBIN_DATABASE_PATH | Path to the sqlite3 database file
|
| users.extraUsers.<name>.linger | Whether to enable or disable lingering for this user
|
| services.mautrix-whatsapp.enable | Whether to enable mautrix-whatsapp, a Matrix-WhatsApp puppeting bridge.
|
| services.home-assistant.config.homeassistant.unit_system | The unit system to use
|
| services.xserver.desktopManager.phosh.user | The user to run the Phosh service.
|
| services.mautrix-whatsapp.serviceDependencies | List of systemd units to require and wait for when starting the application service.
|
| systemd.network.netdevs.<name>.l2tpConfig | Each attribute in this set specifies an option in the
[L2TP] section of the unit
|
| services.kubernetes.controllerManager.allocateNodeCIDRs | Whether to automatically allocate CIDR ranges for cluster nodes.
|
| services.kubernetes.apiserver.tlsKeyFile | Kubernetes apiserver private key file.
|
| services.zabbixServer.extraPackages | Packages to be added to the Zabbix PATH
|