DynamicUser= setting in unit files.)
To make use of these NSS modules, please add them to the "hosts:",
- "passwd:" and "group:" lines in /etc/nsswitch.conf. The "resolve" module
- should replace the glibc "dns" module in this file (and don't worry, it
- chain-loads the "dns" module if it can't talk to resolved).
+ "passwd:", "group:", "shadow:" and "gshadow:" lines in
+ /etc/nsswitch.conf.
The four modules should be used in the following order:
- passwd: compat systemd
- group: compat systemd
- hosts: files mymachines resolve [!UNAVAIL=return] dns myhostname
+ passwd: files systemd
+ group: files [SUCCESS=merge] systemd
+ shadow: files systemd
+ gshadow: files systemd
+ hosts: mymachines resolve [!UNAVAIL=return] files myhostname dns
SYSV INIT.D SCRIPTS:
When calling "systemctl enable/disable/is-enabled" on a unit which is a
# This file is part of systemd.
-passwd: compat systemd
-group: compat [SUCCESS=merge] systemd
-shadow: compat systemd
+passwd: files systemd
+group: files [SUCCESS=merge] systemd
+shadow: files systemd
gshadow: files systemd
hosts: mymachines resolve [!UNAVAIL=return] files myhostname dns
<command>nss-myhostname</command> correctly:</para>
<!-- synchronize with other nss-* man pages and factory/etc/nsswitch.conf -->
-<programlisting>passwd: compat systemd
-group: compat [SUCCESS=merge] systemd
-shadow: compat systemd
+<programlisting>passwd: files systemd
+group: files [SUCCESS=merge] systemd
+shadow: files systemd
gshadow: files systemd
-
hosts: mymachines resolve [!UNAVAIL=return] files <command>myhostname</command> dns
networks: files
<command>nss-mymachines</command> correctly:</para>
<!-- synchronize with other nss-* man pages and factory/etc/nsswitch.conf -->
- <programlisting>passwd: compat systemd
-group: compat [SUCCESS=merge] systemd
-shadow: compat systemd
+ <programlisting>passwd: files systemd
+group: files [SUCCESS=merge] systemd
+shadow: files systemd
gshadow: files systemd
hosts: <command>mymachines</command> resolve [!UNAVAIL=return] files myhostname dns
<command>nss-resolve</command> correctly:</para>
<!-- synchronize with other nss-* man pages and factory/etc/nsswitch.conf -->
-<programlisting>passwd: compat systemd
-group: compat [SUCCESS=merge] systemd
-shadow: compat systemd
+<programlisting>passwd: files systemd
+group: files [SUCCESS=merge] systemd
+shadow: files systemd
gshadow: files systemd
hosts: mymachines <command>resolve [!UNAVAIL=return]</command> files myhostname dns
<literal>passwd:</literal>, <literal>group:</literal>, <literal>shadow:</literal> and
<literal>gshadow:</literal> in <filename>/etc/nsswitch.conf</filename>.</para>
- <para>It is recommended to place <literal>systemd</literal> after the <literal>files</literal> or
- <literal>compat</literal> entry of the <filename>/etc/nsswitch.conf</filename> lines so that
- <filename>/etc/passwd</filename>, <filename>/etc/group</filename>, <filename>/etc/shadow</filename> and
- <filename>/etc/gshadow</filename> based mappings take precedence.</para>
+ <para>It is recommended to place <literal>systemd</literal> after the <literal>files</literal> entry of
+ the <filename>/etc/nsswitch.conf</filename> lines so that <filename>/etc/passwd</filename>,
+ <filename>/etc/group</filename>, <filename>/etc/shadow</filename> and <filename>/etc/gshadow</filename>
+ based mappings take precedence.</para>
</refsect1>
<refsect1>
<command>nss-systemd</command> correctly:</para>
<!-- synchronize with other nss-* man pages and factory/etc/nsswitch.conf -->
- <programlisting>passwd: compat <command>systemd</command>
-group: compat [SUCCESS=merge] <command>systemd</command>
-shadow: compat <command>systemd</command>
+ <programlisting>passwd: files <command>systemd</command>
+group: files <command>[SUCCESS=merge] systemd</command>
+shadow: files <command>systemd</command>
gshadow: files <command>systemd</command>
hosts: mymachines resolve [!UNAVAIL=return] files myhostname dns
projects / thirdparty / systemd.git / commitdiff
