| services.code-server.userDataDir | Path to the user data directory.
|
| services.bacula-dir.tls.key | The path of a PEM encoded TLS private key
|
| services.galene.keyFile | Path to the server's private key
|
| services.gollum.stateDir | Specifies the path of the repository directory
|
| services.mptcpd.enable | Whether to enable the Multipath TCP path management daemon.
|
| services.node-red.configFile | Path to the JavaScript configuration file
|
| services.skydns.etcd.caCert | Skydns path of TLS certificate authority public key.
|
| services.nginx.sslDhparam | Path to DH parameters file.
|
| services.ncps.cache.tempPath | The path to the temporary directory that is used by the cache to download NAR files
|
| services.rke2.configPath | File path containing the rke2 YAML config
|
| services.bacula-sd.director.<name>.tls.enable | Specifies if TLS should be enabled
|
| services.bacula-fd.director.<name>.tls.enable | Specifies if TLS should be enabled
|
| services.bind.zones.<name>.allowQuery | List of address ranges allowed to query this zone
|
| systemd.slices.<name>.startLimitBurst | Configure unit start rate limiting
|
| systemd.timers.<name>.startLimitBurst | Configure unit start rate limiting
|
| users.extraUsers.<name>.isNormalUser | Indicates whether this is an account for a “real” user
|
| services.nsd.zones.<name>.maxRetrySecs | Limit retry time for secondary zones
|
| services.redis.servers.<name>.slaveOf.ip | IP of the Redis master
|
| services.openvpn.servers.<name>.authUserPass.username | The username to store inside the credentials file.
|
| services.ax25.axports.<name>.kissParams | Kissattach parameters for this interface.
|
| services.drupal.sites.<name>.package | The drupal package to use.
|
| systemd.user.sockets.<name>.upholds | Keeps the specified running while this unit is running
|
| systemd.user.targets.<name>.upholds | Keeps the specified running while this unit is running
|
| services.ghostunnel.servers.<name>.allowCN | Allow client if common name appears in the list.
|
| systemd.nspawn.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| systemd.timers.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| systemd.slices.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| services.dovecot2.imapsieve.mailbox.*.name | This setting configures the name of a mailbox for which administrator scripts are configured
|
| power.ups.ups.<name>.description | Description of the UPS.
|
| services.redis.servers.<name>.port | The TCP port to accept connections
|
| systemd.user.slices.<name>.sliceConfig | Each attribute in this set specifies an option in the
[Slice] section of the unit
|
| services.geth.<name>.authrpc.enable | Whether to enable Go Ethereum Auth RPC API.
|
| systemd.user.services.<name>.reload | Shell commands executed when the service's main process
is reloaded.
|
| systemd.services.<name>.upholds | Keeps the specified running while this unit is running
|
| systemd.user.services.<name>.postStart | Shell commands executed after the service's main process
is started.
|
| services.cjdns.ETHInterface.connectTo.<name>.login | (optional) name your peer has for you
|
| services.cjdns.UDPInterface.connectTo.<name>.login | (optional) name your peer has for you
|
| services.public-inbox.inboxes.<name>.newsgroup | NNTP group name for the inbox.
|
| services.multipath.devices.*.san_path_err_recovery_time | If set to a value greater than 0, multipathd will make sure that when
path failures has exceeded the san_path_err_threshold within
san_path_err_forget_rate then the path will be placed in failed state
for san_path_err_recovery_time duration
|
| services.wordpress.sites.<name>.virtualHost.locations.<name>.proxyPass | Sets up a simple reverse proxy as described by https://httpd.apache.org/docs/2.4/howto/reverse_proxy.html#simple.
|
| systemd.network.links.<name>.enable | Whether to enable this .link unit
|
| systemd.user.services.<name>.bindsTo | Like ‘requires’, but in addition, if the specified units
unexpectedly disappear, this unit will be stopped as well.
|
| services.beesd.filesystems.<name>.workDir | Name (relative to the root of the filesystem) of the subvolume where
the hash table will be stored.
|
| services.multipath.overrides | This section defines values for attributes that should override the
device-specific settings for all devices.
|
| users.extraUsers.<name>.isSystemUser | Indicates if the user is a system user or not
|
| services.tinc.networks.<name>.hostSettings.<name>.subnets.*.weight | Indicates the priority over identical Subnets owned by different nodes
|
| security.acme.certs.<name>.enableDebugLogs | Whether to enable debug logging for this certificate.
|
| services.openvpn.servers.<name>.up | Shell commands executed when the instance is starting.
|
| services.tahoe.nodes.<name>.sftpd.enable | Whether to enable SFTP service.
|
| power.ups.upsmon.monitor.<name>.powerValue | Number of power supplies that the UPS feeds on this system
|
| environment.etc.<name>.mode | If set to something else than symlink,
the file is copied instead of symlinked, with the given
file mode.
|
| services.ghostunnel.servers.<name>.allowOU | Allow client if organizational unit name appears in the list.
|
| networking.bridges.<name>.rstp | Whether the bridge interface should enable rstp.
|
| services.fedimintd.<name>.ui.bind | Address to bind on for UI connections
|
| services.jupyter.kernels.<name>.env | Environment variables to set for the kernel.
|
| networking.greTunnels.<name>.dev | The underlying network device on which the tunnel resides.
|
| services.rspamd.workers.<name>.count | Number of worker instances to run
|
| services.redis.servers.<name>.syslog | Enable logging to the system logger.
|
| services.redis.servers.<name>.enable | Whether to enable Redis server.
|
| services.librenms.logDir | Path of the LibreNMS logging directory.
|
| services.klipper.inputTTY | Path of the virtual printer symlink to create.
|
| services.jenkins.home | The path to use as JENKINS_HOME
|
| services.galene.certFile | Path to the server's certificate
|
| services.slurm.mpi.PmixCliTmpDirBase | Base path for PMIx temporary files.
|
| services.slskd.domain | If non-null, enables an nginx reverse proxy virtual host at this FQDN,
at the path configurated with services.slskd.web.url_base.
|
| services.minio.dataDir | The list of data directories or nodes for storing the objects
|
| services.self-deploy.nixFile | Path to nix file in repository
|
| services.qui.secretFile | Path to a file that contains the session secret
|
| services.zwave-js.serialPort | Serial port device path for Z-Wave controller.
|
| services.tinc.networks.<name>.hostSettings.<name>.subnets.*.prefixLength | The prefix length of the subnet
|
| services.nsd.keys.<name>.algorithm | Authentication algorithm for this key.
|
| systemd.user.services.<name>.before | If the specified units are started at the same time as
this unit, delay them until this unit has started.
|
| systemd.user.sockets.<name>.onSuccess | A list of one or more units that are activated when
this unit enters the "inactive" state.
|
| systemd.user.sockets.<name>.onFailure | A list of one or more units that are activated when
this unit enters the "failed" state.
|
| systemd.user.targets.<name>.onFailure | A list of one or more units that are activated when
this unit enters the "failed" state.
|
| systemd.user.targets.<name>.onSuccess | A list of one or more units that are activated when
this unit enters the "inactive" state.
|
| services.firezone.server.provision.accounts.<name>.actors.<name>.type | The account type
|
| services.acpid.handlers.<name>.event | Event type.
|
| services.quicktun.<name>.remotePort | Remote UDP port
|
| systemd.user.services.<name>.aliases | Aliases of that unit.
|
| services.tinc.networks.<name>.hostSettings.<name>.addresses.*.address | The external IP address or hostname where the host can be reached.
|
| systemd.services.<name>.onFailure | A list of one or more units that are activated when
this unit enters the "failed" state.
|
| systemd.services.<name>.onSuccess | A list of one or more units that are activated when
this unit enters the "inactive" state.
|
| services.kanidm.provision.systems.oauth2.<name>.claimMaps.<name>.valuesByGroup | Maps kanidm groups to values for the claim.
|
| services.kimai.sites.<name>.poolConfig | Options for the Kimai PHP pool
|
| services.keycloak.database.passwordFile | The path to a file containing the database password
|
| services.quicktun.<name>.upScript | Run specified command or script after the tunnel device has been opened.
|
| services.redis.servers.<name>.slowLogMaxLen | Maximum number of items to keep in slow log.
|
| systemd.timers.<name>.conflicts | If the specified units are started, then this unit is stopped
and vice versa.
|
| systemd.slices.<name>.conflicts | If the specified units are started, then this unit is stopped
and vice versa.
|
| services.openssh.knownHosts.<name>.hostNames | A list of host names and/or IP numbers used for accessing
the host's ssh service
|
| services.h2o.hosts.<name>.tls.policy | add will additionally listen for TLS connections. only will
disable TLS connections. force will redirect non-TLS traffic
to the TLS connection.
|
| services.fedimintd.<name>.ui.port | TCP Port to bind on for UI connections
|
| services.rsync.jobs.<name>.inhibit | Run the rsync process with an inhibition lock taken;
see systemd-inhibit(1) for a list of possible operations.
|
| services.ax25.axports.<name>.package | The ax25-tools package to use.
|
| security.pam.services.<name>.enable | Whether to enable this PAM service.
|
| services.nylon.<name>.verbosity | Enable verbose output, default is to not be verbose.
|
| systemd.network.links.<name>.extraConfig | Extra configuration append to unit
|
| systemd.user.units.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| services.ghostunnel.servers.<name>.allowDNS | Allow client if DNS subject alternative name appears in the list.
|