[thirdparty/systemd.git] / man / logind.conf.xml

<?xml version='1.0'?> <!--*- Mode: nxml; nxml-child-indent: 2; indent-tabs-mode: nil -*-->
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
  "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">

<!--
  SPDX-License-Identifier: LGPL-2.1+

  This file is part of systemd.

  Copyright 2010 Lennart Poettering

  systemd is free software; you can redistribute it and/or modify it
  under the terms of the GNU Lesser General Public License as published by
  the Free Software Foundation; either version 2.1 of the License, or
  (at your option) any later version.

  systemd is distributed in the hope that it will be useful, but
  WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
  Lesser General Public License for more details.

  You should have received a copy of the GNU Lesser General Public License
  along with systemd; If not, see <http://www.gnu.org/licenses/>.
-->

<refentry id="logind.conf" conditional='ENABLE_LOGIND'
    xmlns:xi="http://www.w3.org/2001/XInclude">
  <refentryinfo>
    <title>logind.conf</title>
    <productname>systemd</productname>

    <authorgroup>
      <author>
        <contrib>Developer</contrib>
        <firstname>Lennart</firstname>
        <surname>Poettering</surname>
        <email>lennart@poettering.net</email>
      </author>
    </authorgroup>
  </refentryinfo>

  <refmeta>
    <refentrytitle>logind.conf</refentrytitle>
    <manvolnum>5</manvolnum>
  </refmeta>

  <refnamediv>
    <refname>logind.conf</refname>
    <refname>logind.conf.d</refname>
    <refpurpose>Login manager configuration files</refpurpose>
  </refnamediv>

  <refsynopsisdiv>
    <para><filename>/etc/systemd/logind.conf</filename></para>
    <para><filename>/etc/systemd/logind.conf.d/*.conf</filename></para>
    <para><filename>/run/systemd/logind.conf.d/*.conf</filename></para>
    <para><filename>/usr/lib/systemd/logind.conf.d/*.conf</filename></para>
  </refsynopsisdiv>

  <refsect1>
    <title>Description</title>

    <para>These files configure various parameters of the systemd
    login manager,
    <citerefentry><refentrytitle>systemd-logind.service</refentrytitle><manvolnum>8</manvolnum></citerefentry>.
    </para>
  </refsect1>

  <xi:include href="standard-conf.xml" xpointer="main-conf" />

  <refsect1>
    <title>Options</title>

    <para>All options are configured in the
    <literal>[Login]</literal> section:</para>

    <variablelist>

      <varlistentry>
        <term><varname>NAutoVTs=</varname></term>

        <listitem><para>Takes a positive integer. Configures how many
        virtual terminals (VTs) to allocate by default that, when
        switched to and are previously unused,
        <literal>autovt</literal> services are automatically spawned
        on. These services are instantiated from the template unit
        <filename>autovt@.service</filename> for the respective VT TTY
        name, for example, <filename>autovt@tty4.service</filename>.
        By default, <filename>autovt@.service</filename> is linked to
        <filename>getty@.service</filename>. In other words, login
        prompts are started dynamically as the user switches to unused
        virtual terminals. Hence, this parameter controls how many
        login <literal>gettys</literal> are available on the VTs. If a
        VT is already used by some other subsystem (for example, a
        graphical login), this kind of activation will not be
        attempted. Note that the VT configured in
        <varname>ReserveVT=</varname> is always subject to this kind
        of activation, even if it is not one of the VTs configured
        with the <varname>NAutoVTs=</varname> directive. Defaults to
        6. When set to 0, automatic spawning of
        <literal>autovt</literal> services is
        disabled.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>ReserveVT=</varname></term>

        <listitem><para>Takes a positive integer. Identifies one
        virtual terminal that shall unconditionally be reserved for
        <filename>autovt@.service</filename> activation (see above).
        The VT selected with this option will be marked busy
        unconditionally, so that no other subsystem will allocate it.
        This functionality is useful to ensure that, regardless of how
        many VTs are allocated by other subsystems, one login
        <literal>getty</literal> is always available. Defaults to 6
        (in other words, there will always be a
        <literal>getty</literal> available on Alt-F6.). When set to 0,
        VT reservation is disabled.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>KillUserProcesses=</varname></term>

        <listitem><para>Takes a boolean argument. Configures whether the processes of a
        user should be killed when the user logs out. If true, the scope unit
        corresponding to the session and all processes inside that scope will be
        terminated. If false, the scope is "abandoned", see
        <citerefentry><refentrytitle>systemd.scope</refentrytitle><manvolnum>5</manvolnum></citerefentry>,
        and processes are not killed. Defaults to <literal>yes</literal>,
        but see the options <varname>KillOnlyUsers=</varname> and
        <varname>KillExcludeUsers=</varname> below.</para>

        <para>In addition to session processes, user process may run under the user
        manager unit <filename>user@.service</filename>. Depending on the linger
        settings, this may allow users to run processes independent of their login
        sessions. See the description of <command>enable-linger</command> in
        <citerefentry><refentrytitle>loginctl</refentrytitle><manvolnum>1</manvolnum></citerefentry>.
        </para>

        <para>Note that setting <varname>KillUserProcesses=yes</varname>
        will break tools like
        <citerefentry project='die-net'><refentrytitle>screen</refentrytitle><manvolnum>1</manvolnum></citerefentry>
        and
        <citerefentry project='die-net'><refentrytitle>tmux</refentrytitle><manvolnum>1</manvolnum></citerefentry>,
        unless they are moved out of the session scope. See example in
        <citerefentry><refentrytitle>systemd-run</refentrytitle><manvolnum>1</manvolnum></citerefentry>.
        </para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>KillOnlyUsers=</varname></term>
        <term><varname>KillExcludeUsers=</varname></term>

        <listitem><para>These settings take space-separated lists of usernames that override
        the <varname>KillUserProcesses=</varname> setting. A user name may be added to
        <varname>KillExcludeUsers=</varname> to exclude the processes in the session scopes of
        that user from being killed even if <varname>KillUserProcesses=yes</varname> is set. If
        <varname>KillExcludeUsers=</varname> is not set, the <literal>root</literal> user is
        excluded by default. <varname>KillExcludeUsers=</varname> may be set to an empty value
        to override this default. If a user is not excluded, <varname>KillOnlyUsers=</varname>
        is checked next. If this setting is specified, only the session scopes of those users
        will be killed. Otherwise, users are subject to the
        <varname>KillUserProcesses=yes</varname> setting.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>IdleAction=</varname></term>

        <listitem><para>Configures the action to take when the system
        is idle. Takes one of
        <literal>ignore</literal>,
        <literal>poweroff</literal>,
        <literal>reboot</literal>,
        <literal>halt</literal>,
        <literal>kexec</literal>,
        <literal>suspend</literal>,
        <literal>hibernate</literal>,
        <literal>hybrid-sleep</literal>, and
        <literal>lock</literal>.
        Defaults to <literal>ignore</literal>.</para>

        <para>Note that this requires that user sessions correctly
        report the idle status to the system. The system will execute
        the action after all sessions report that they are idle, no
        idle inhibitor lock is active, and subsequently, the time
        configured with <varname>IdleActionSec=</varname> (see below)
        has expired.</para>
        </listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>IdleActionSec=</varname></term>

        <listitem><para>Configures the delay after which the action
        configured in <varname>IdleAction=</varname> (see above) is
        taken after the system is idle.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>InhibitDelayMaxSec=</varname></term>

        <listitem><para>Specifies the maximum time a system shutdown
        or sleep request is delayed due to an inhibitor lock of type
        <literal>delay</literal> being active before the inhibitor is
        ignored and the operation executes anyway. Defaults to
        5.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>HandlePowerKey=</varname></term>
        <term><varname>HandleSuspendKey=</varname></term>
        <term><varname>HandleHibernateKey=</varname></term>
        <term><varname>HandleLidSwitch=</varname></term>
        <term><varname>HandleLidSwitchDocked=</varname></term>

        <listitem><para>Controls how logind shall handle the
        system power and sleep keys and the lid switch to trigger
        actions such as system power-off or suspend. Can be one of
        <literal>ignore</literal>,
        <literal>poweroff</literal>,
        <literal>reboot</literal>,
        <literal>halt</literal>,
        <literal>kexec</literal>,
        <literal>suspend</literal>,
        <literal>hibernate</literal>,
        <literal>hybrid-sleep</literal>, and
        <literal>lock</literal>.
        If <literal>ignore</literal>, logind will never handle these
        keys. If <literal>lock</literal>, all running sessions will be
        screen-locked; otherwise, the specified action will be taken
        in the respective event. Only input devices with the
        <literal>power-switch</literal> udev tag will be watched for
        key/lid switch events. <varname>HandlePowerKey=</varname>
        defaults to <literal>poweroff</literal>.
        <varname>HandleSuspendKey=</varname> and
        <varname>HandleLidSwitch=</varname> default to
        <literal>suspend</literal>.
        <varname>HandleLidSwitchDocked=</varname> defaults to
        <literal>ignore</literal>.
        <varname>HandleHibernateKey=</varname> defaults to
        <literal>hibernate</literal>. If the system is inserted in a
        docking station, or if more than one display is connected, the
        action specified by <varname>HandleLidSwitchDocked=</varname>
        occurs; otherwise the <varname>HandleLidSwitch=</varname>
        action occurs.</para>

        <para>A different application may disable logind's handling of system power and
        sleep keys and the lid switch by taking a low-level inhibitor lock
        (<literal>handle-power-key</literal>, <literal>handle-suspend-key</literal>,
        <literal>handle-hibernate-key</literal>, <literal>handle-lid-switch</literal>).
        This is most commonly used by graphical desktop environments
        to take over suspend and hibernation handling, and to use their own configuration
        mechanisms. If a low-level inhibitor lock is taken, logind will not take any
        action when that key or switch is triggered and the <varname>Handle*=</varname>
        settings are irrelevant.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>PowerKeyIgnoreInhibited=</varname></term>
        <term><varname>SuspendKeyIgnoreInhibited=</varname></term>
        <term><varname>HibernateKeyIgnoreInhibited=</varname></term>
        <term><varname>LidSwitchIgnoreInhibited=</varname></term>

        <listitem><para>Controls whether actions that <command>systemd-logind</command>
        takes when the power and sleep keys and the lid switch are triggered are subject
        to high-level inhibitor locks ("shutdown", "sleep", "idle"). Low level inhibitor
        locks (<literal>handle-power-key</literal>, <literal>handle-suspend-key</literal>,
        <literal>handle-hibernate-key</literal>, <literal>handle-lid-switch</literal>),
        are always honored, irrespective of this setting.</para>

        <para>These settings take boolean arguments. If <literal>no</literal>, the
        inhibitor locks taken by applications are respected. If <literal>yes</literal>,
        "shutdown", "sleep", and "idle" inhibitor locks are ignored.
        <varname>PowerKeyIgnoreInhibited=</varname>,
        <varname>SuspendKeyIgnoreInhibited=</varname>, and
        <varname>HibernateKeyIgnoreInhibited=</varname> default to <literal>no</literal>.
        <varname>LidSwitchIgnoreInhibited=</varname> defaults to <literal>yes</literal>.
        This means that when <command>systemd-logind</command> is handling events by
        itself (no low level inhibitor locks are taken by another application), the lid
        switch does not respect suspend blockers by default, but the power and sleep keys
        do.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>HoldoffTimeoutSec=</varname></term>

        <listitem><para>Specifies the timeout after system startup or
        system resume in which systemd will hold off on reacting to
        lid events. This is required for the system to properly
        detect any hotplugged devices so systemd can ignore lid events
        if external monitors, or docks, are connected. If set to 0,
        systemd will always react immediately, possibly before the
        kernel fully probed all hotplugged devices. This is safe, as
        long as you do not care for systemd to account for devices
        that have been plugged or unplugged while the system was off.
        Defaults to 30s.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>RuntimeDirectorySize=</varname></term>

        <listitem><para>Sets the size limit on the
        <varname>$XDG_RUNTIME_DIR</varname> runtime directory for each
        user who logs in. Takes a size in bytes, optionally suffixed
        with the usual K, G, M, and T suffixes, to the base 1024
        (IEC). Alternatively, a numerical percentage suffixed by
        <literal>%</literal> may be specified, which sets the size
        limit relative to the amount of physical RAM. Defaults to 10%.
        Note that this size is a safety limit only. As each runtime
        directory is a tmpfs file system, it will only consume as much
        memory as is needed.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>InhibitorsMax=</varname></term>

        <listitem><para>Controls the maximum number of concurrent inhibitors to permit. Defaults to 8192
        (8K).</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>SessionsMax=</varname></term>

        <listitem><para>Controls the maximum number of concurrent user sessions to manage. Defaults to 8192
        (8K). Depending on how the <filename>pam_systemd.so</filename> module is included in the PAM stack
        configuration, further login sessions will either be refused, or permitted but not tracked by
        <filename>systemd-logind</filename>.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>UserTasksMax=</varname></term>

        <listitem><para>Sets the maximum number of OS tasks each user may run concurrently. This controls the
        <varname>TasksMax=</varname> setting of the per-user slice unit, see
        <citerefentry><refentrytitle>systemd.resource-control</refentrytitle><manvolnum>5</manvolnum></citerefentry>
        for details. If assigned the special value <literal>infinity</literal>, no tasks limit is applied.
        Defaults to 33%, which equals 10813 with the kernel's defaults on the host, but might be smaller in
        OS containers.</para></listitem>
      </varlistentry>

      <varlistentry>
        <term><varname>RemoveIPC=</varname></term>

        <listitem><para>Controls whether System V and POSIX IPC objects belonging to the user shall be removed when the
        user fully logs out. Takes a boolean argument. If enabled, the user may not consume IPC resources after the
        last of the user's sessions terminated. This covers System V semaphores, shared memory and message queues, as
        well as POSIX shared memory and message queues. Note that IPC objects of the root user and other system users
        are excluded from the effect of this setting. Defaults to <literal>yes</literal>.</para></listitem>
      </varlistentry>

    </variablelist>
  </refsect1>

  <refsect1>
      <title>See Also</title>
      <para>
        <citerefentry><refentrytitle>systemd</refentrytitle><manvolnum>1</manvolnum></citerefentry>,
        <citerefentry><refentrytitle>systemd-logind.service</refentrytitle><manvolnum>8</manvolnum></citerefentry>,
        <citerefentry><refentrytitle>loginctl</refentrytitle><manvolnum>1</manvolnum></citerefentry>,
        <citerefentry><refentrytitle>systemd-system.conf</refentrytitle><manvolnum>5</manvolnum></citerefentry>
      </para>
  </refsect1>

</refentry>
Commit	Line	Data
90558f31	1	<?xml version='1.0'?> <!--- Mode: nxml; nxml-child-indent: 2; indent-tabs-mode: nil --->
8fa365e5	2	<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
12b42c76	3	"http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">
8fa365e5 LP	4
8fa365e5 LP	5	<!--
572eb058 ZJS	6	SPDX-License-Identifier: LGPL-2.1+
572eb058 ZJS	7
8fa365e5 LP	8	This file is part of systemd.
	9
	10	Copyright 2010 Lennart Poettering
	11
	12	systemd is free software; you can redistribute it and/or modify it
5430f7f2 LP	13	under the terms of the GNU Lesser General Public License as published by
5430f7f2 LP	14	the Free Software Foundation; either version 2.1 of the License, or
8fa365e5 LP	15	(at your option) any later version.
	16
	17	systemd is distributed in the hope that it will be useful, but
	18	WITHOUT ANY WARRANTY; without even the implied warranty of
	19	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
5430f7f2	20	Lesser General Public License for more details.
8fa365e5	21
5430f7f2	22	You should have received a copy of the GNU Lesser General Public License
8fa365e5 LP	23	along with systemd; If not, see <http://www.gnu.org/licenses/>.
	24	-->
	25
d3fae78f	26	<refentry id="logind.conf" conditional='ENABLE_LOGIND'
798d3a52 ZJS	27	xmlns:xi="http://www.w3.org/2001/XInclude">
	28	<refentryinfo>
	29	<title>logind.conf</title>
	30	<productname>systemd</productname>
	31
	32	<authorgroup>
	33	<author>
	34	<contrib>Developer</contrib>
	35	<firstname>Lennart</firstname>
	36	<surname>Poettering</surname>
	37	<email>lennart@poettering.net</email>
	38	</author>
	39	</authorgroup>
	40	</refentryinfo>
	41
	42	<refmeta>
	43	<refentrytitle>logind.conf</refentrytitle>
	44	<manvolnum>5</manvolnum>
	45	</refmeta>
	46
	47	<refnamediv>
	48	<refname>logind.conf</refname>
	49	<refname>logind.conf.d</refname>
	50	<refpurpose>Login manager configuration files</refpurpose>
	51	</refnamediv>
	52
	53	<refsynopsisdiv>
12b42c76 TG	54	<para><filename>/etc/systemd/logind.conf</filename></para>
12b42c76 TG	55	<para><filename>/etc/systemd/logind.conf.d/*.conf</filename></para>
798d3a52	56	<para><filename>/run/systemd/logind.conf.d/*.conf</filename></para>
12b42c76	57	<para><filename>/usr/lib/systemd/logind.conf.d/*.conf</filename></para>
798d3a52 ZJS	58	</refsynopsisdiv>
	59
	60	<refsect1>
	61	<title>Description</title>
	62
e93549ef ZJS	63	<para>These files configure various parameters of the systemd
	64	login manager,
	65	<citerefentry><refentrytitle>systemd-logind.service</refentrytitle><manvolnum>8</manvolnum></citerefentry>.
	66	</para>
798d3a52 ZJS	67	</refsect1>
798d3a52 ZJS	68
e93549ef	69	<xi:include href="standard-conf.xml" xpointer="main-conf" />
798d3a52 ZJS	70
	71	<refsect1>
	72	<title>Options</title>
	73
	74	<para>All options are configured in the
	75	<literal>[Login]</literal> section:</para>
	76
	77	<variablelist>
	78
	79	<varlistentry>
	80	<term><varname>NAutoVTs=</varname></term>
	81
	82	<listitem><para>Takes a positive integer. Configures how many
	83	virtual terminals (VTs) to allocate by default that, when
	84	switched to and are previously unused,
	85	<literal>autovt</literal> services are automatically spawned
	86	on. These services are instantiated from the template unit
	87	<filename>autovt@.service</filename> for the respective VT TTY
	88	name, for example, <filename>autovt@tty4.service</filename>.
	89	By default, <filename>autovt@.service</filename> is linked to
	90	<filename>getty@.service</filename>. In other words, login
	91	prompts are started dynamically as the user switches to unused
	92	virtual terminals. Hence, this parameter controls how many
	93	login <literal>gettys</literal> are available on the VTs. If a
	94	VT is already used by some other subsystem (for example, a
	95	graphical login), this kind of activation will not be
	96	attempted. Note that the VT configured in
	97	<varname>ReserveVT=</varname> is always subject to this kind
	98	of activation, even if it is not one of the VTs configured
	99	with the <varname>NAutoVTs=</varname> directive. Defaults to
	100	6. When set to 0, automatic spawning of
	101	<literal>autovt</literal> services is
	102	disabled.</para></listitem>
	103	</varlistentry>
	104
	105	<varlistentry>
	106	<term><varname>ReserveVT=</varname></term>
	107
	108	<listitem><para>Takes a positive integer. Identifies one
	109	virtual terminal that shall unconditionally be reserved for
	110	<filename>autovt@.service</filename> activation (see above).
	111	The VT selected with this option will be marked busy
	112	unconditionally, so that no other subsystem will allocate it.
	113	This functionality is useful to ensure that, regardless of how
	114	many VTs are allocated by other subsystems, one login
	115	<literal>getty</literal> is always available. Defaults to 6
	116	(in other words, there will always be a
	117	<literal>getty</literal> available on Alt-F6.). When set to 0,
	118	VT reservation is disabled.</para></listitem>
	119	</varlistentry>
	120
	121	<varlistentry>
	122	<term><varname>KillUserProcesses=</varname></term>
	123
65eb37f8 ZJS	124	<listitem><para>Takes a boolean argument. Configures whether the processes of a
	125	user should be killed when the user logs out. If true, the scope unit
	126	corresponding to the session and all processes inside that scope will be
4f25723c	127	terminated. If false, the scope is "abandoned", see
65eb37f8	128	<citerefentry><refentrytitle>systemd.scope</refentrytitle><manvolnum>5</manvolnum></citerefentry>,
921f831d ZJS	129	and processes are not killed. Defaults to <literal>yes</literal>,
	130	but see the options <varname>KillOnlyUsers=</varname> and
	131	<varname>KillExcludeUsers=</varname> below.</para>
65eb37f8 ZJS	132
	133	<para>In addition to session processes, user process may run under the user
	134	manager unit <filename>user@.service</filename>. Depending on the linger
	135	settings, this may allow users to run processes independent of their login
	136	sessions. See the description of <command>enable-linger</command> in
	137	<citerefentry><refentrytitle>loginctl</refentrytitle><manvolnum>1</manvolnum></citerefentry>.
	138	</para>
	139
	140	<para>Note that setting <varname>KillUserProcesses=yes</varname>
798d3a52	141	will break tools like
65eb37f8 ZJS	142	<citerefentry project='die-net'><refentrytitle>screen</refentrytitle><manvolnum>1</manvolnum></citerefentry>
	143	and
	144	<citerefentry project='die-net'><refentrytitle>tmux</refentrytitle><manvolnum>1</manvolnum></citerefentry>,
	145	unless they are moved out of the session scope. See example in
	146	<citerefentry><refentrytitle>systemd-run</refentrytitle><manvolnum>1</manvolnum></citerefentry>.
	147	</para></listitem>
798d3a52 ZJS	148	</varlistentry>
	149
	150	<varlistentry>
	151	<term><varname>KillOnlyUsers=</varname></term>
	152	<term><varname>KillExcludeUsers=</varname></term>
	153
921f831d ZJS	154	<listitem><para>These settings take space-separated lists of usernames that override
	155	the <varname>KillUserProcesses=</varname> setting. A user name may be added to
	156	<varname>KillExcludeUsers=</varname> to exclude the processes in the session scopes of
	157	that user from being killed even if <varname>KillUserProcesses=yes</varname> is set. If
	158	<varname>KillExcludeUsers=</varname> is not set, the <literal>root</literal> user is
	159	excluded by default. <varname>KillExcludeUsers=</varname> may be set to an empty value
	160	to override this default. If a user is not excluded, <varname>KillOnlyUsers=</varname>
	161	is checked next. If this setting is specified, only the session scopes of those users
	162	will be killed. Otherwise, users are subject to the
	163	<varname>KillUserProcesses=yes</varname> setting.</para></listitem>
798d3a52 ZJS	164	</varlistentry>
	165
	166	<varlistentry>
	167	<term><varname>IdleAction=</varname></term>
	168
	169	<listitem><para>Configures the action to take when the system
	170	is idle. Takes one of
	171	<literal>ignore</literal>,
	172	<literal>poweroff</literal>,
	173	<literal>reboot</literal>,
	174	<literal>halt</literal>,
	175	<literal>kexec</literal>,
	176	<literal>suspend</literal>,
	177	<literal>hibernate</literal>,
	178	<literal>hybrid-sleep</literal>, and
	179	<literal>lock</literal>.
	180	Defaults to <literal>ignore</literal>.</para>
	181
	182	<para>Note that this requires that user sessions correctly
	183	report the idle status to the system. The system will execute
	184	the action after all sessions report that they are idle, no
	185	idle inhibitor lock is active, and subsequently, the time
	186	configured with <varname>IdleActionSec=</varname> (see below)
	187	has expired.</para>
	188	</listitem>
	189	</varlistentry>
	190
	191	<varlistentry>
	192	<term><varname>IdleActionSec=</varname></term>
	193
	194	<listitem><para>Configures the delay after which the action
	195	configured in <varname>IdleAction=</varname> (see above) is
	196	taken after the system is idle.</para></listitem>
	197	</varlistentry>
	198
	199	<varlistentry>
	200	<term><varname>InhibitDelayMaxSec=</varname></term>
	201
	202	<listitem><para>Specifies the maximum time a system shutdown
	203	or sleep request is delayed due to an inhibitor lock of type
	204	<literal>delay</literal> being active before the inhibitor is
	205	ignored and the operation executes anyway. Defaults to
	206	5.</para></listitem>
	207	</varlistentry>
	208
	209	<varlistentry>
	210	<term><varname>HandlePowerKey=</varname></term>
	211	<term><varname>HandleSuspendKey=</varname></term>
	212	<term><varname>HandleHibernateKey=</varname></term>
	213	<term><varname>HandleLidSwitch=</varname></term>
	214	<term><varname>HandleLidSwitchDocked=</varname></term>
	215
05b2a8fd	216	<listitem><para>Controls how logind shall handle the
798d3a52 ZJS	217	system power and sleep keys and the lid switch to trigger
	218	actions such as system power-off or suspend. Can be one of
	219	<literal>ignore</literal>,
	220	<literal>poweroff</literal>,
	221	<literal>reboot</literal>,
	222	<literal>halt</literal>,
	223	<literal>kexec</literal>,
	224	<literal>suspend</literal>,
	225	<literal>hibernate</literal>,
	226	<literal>hybrid-sleep</literal>, and
	227	<literal>lock</literal>.
	228	If <literal>ignore</literal>, logind will never handle these
	229	keys. If <literal>lock</literal>, all running sessions will be
	230	screen-locked; otherwise, the specified action will be taken
	231	in the respective event. Only input devices with the
	232	<literal>power-switch</literal> udev tag will be watched for
	233	key/lid switch events. <varname>HandlePowerKey=</varname>
	234	defaults to <literal>poweroff</literal>.
	235	<varname>HandleSuspendKey=</varname> and
	236	<varname>HandleLidSwitch=</varname> default to
	237	<literal>suspend</literal>.
	238	<varname>HandleLidSwitchDocked=</varname> defaults to
	239	<literal>ignore</literal>.
	240	<varname>HandleHibernateKey=</varname> defaults to
	241	<literal>hibernate</literal>. If the system is inserted in a
	242	docking station, or if more than one display is connected, the
	243	action specified by <varname>HandleLidSwitchDocked=</varname>
	244	occurs; otherwise the <varname>HandleLidSwitch=</varname>
05b2a8fd ZJS	245	action occurs.</para>
	246
	247	<para>A different application may disable logind's handling of system power and
	248	sleep keys and the lid switch by taking a low-level inhibitor lock
3daffa82 MB	249	(<literal>handle-power-key</literal>, <literal>handle-suspend-key</literal>,
	250	<literal>handle-hibernate-key</literal>, <literal>handle-lid-switch</literal>).
	251	This is most commonly used by graphical desktop environments
05b2a8fd ZJS	252	to take over suspend and hibernation handling, and to use their own configuration
	253	mechanisms. If a low-level inhibitor lock is taken, logind will not take any
	254	action when that key or switch is triggered and the <varname>Handle*=</varname>
	255	settings are irrelevant.</para></listitem>
798d3a52 ZJS	256	</varlistentry>
	257
	258	<varlistentry>
	259	<term><varname>PowerKeyIgnoreInhibited=</varname></term>
	260	<term><varname>SuspendKeyIgnoreInhibited=</varname></term>
	261	<term><varname>HibernateKeyIgnoreInhibited=</varname></term>
	262	<term><varname>LidSwitchIgnoreInhibited=</varname></term>
	263
05b2a8fd ZJS	264	<listitem><para>Controls whether actions that <command>systemd-logind</command>
	265	takes when the power and sleep keys and the lid switch are triggered are subject
	266	to high-level inhibitor locks ("shutdown", "sleep", "idle"). Low level inhibitor
3daffa82 MB	267	locks (<literal>handle-power-key</literal>, <literal>handle-suspend-key</literal>,
	268	<literal>handle-hibernate-key</literal>, <literal>handle-lid-switch</literal>),
	269	are always honored, irrespective of this setting.</para>
05b2a8fd ZJS	270
	271	<para>These settings take boolean arguments. If <literal>no</literal>, the
	272	inhibitor locks taken by applications are respected. If <literal>yes</literal>,
	273	"shutdown", "sleep", and "idle" inhibitor locks are ignored.
798d3a52	274	<varname>PowerKeyIgnoreInhibited=</varname>,
05b2a8fd ZJS	275	<varname>SuspendKeyIgnoreInhibited=</varname>, and
	276	<varname>HibernateKeyIgnoreInhibited=</varname> default to <literal>no</literal>.
	277	<varname>LidSwitchIgnoreInhibited=</varname> defaults to <literal>yes</literal>.
	278	This means that when <command>systemd-logind</command> is handling events by
	279	itself (no low level inhibitor locks are taken by another application), the lid
	280	switch does not respect suspend blockers by default, but the power and sleep keys
	281	do.</para></listitem>
798d3a52 ZJS	282	</varlistentry>
798d3a52 ZJS	283
9d10cbee DH	284	<varlistentry>
	285	<term><varname>HoldoffTimeoutSec=</varname></term>
	286
	287	<listitem><para>Specifies the timeout after system startup or
	288	system resume in which systemd will hold off on reacting to
a8eaaee7 JE	289	lid events. This is required for the system to properly
a8eaaee7 JE	290	detect any hotplugged devices so systemd can ignore lid events
9d10cbee DH	291	if external monitors, or docks, are connected. If set to 0,
	292	systemd will always react immediately, possibly before the
	293	kernel fully probed all hotplugged devices. This is safe, as
	294	long as you do not care for systemd to account for devices
	295	that have been plugged or unplugged while the system was off.
	296	Defaults to 30s.</para></listitem>
	297	</varlistentry>
	298
798d3a52 ZJS	299	<varlistentry>
	300	<term><varname>RuntimeDirectorySize=</varname></term>
	301
	302	<listitem><para>Sets the size limit on the
	303	<varname>$XDG_RUNTIME_DIR</varname> runtime directory for each
	304	user who logs in. Takes a size in bytes, optionally suffixed
	305	with the usual K, G, M, and T suffixes, to the base 1024
	306	(IEC). Alternatively, a numerical percentage suffixed by
	307	<literal>%</literal> may be specified, which sets the size
	308	limit relative to the amount of physical RAM. Defaults to 10%.
	309	Note that this size is a safety limit only. As each runtime
	310	directory is a tmpfs file system, it will only consume as much
90558f31 LP	311	memory as is needed.</para></listitem>
	312	</varlistentry>
	313
c5a11ae2 LP	314	<varlistentry>
	315	<term><varname>InhibitorsMax=</varname></term>
	316
	317	<listitem><para>Controls the maximum number of concurrent inhibitors to permit. Defaults to 8192
	318	(8K).</para></listitem>
	319	</varlistentry>
	320
183e0738 LP	321	<varlistentry>
	322	<term><varname>SessionsMax=</varname></term>
	323
	324	<listitem><para>Controls the maximum number of concurrent user sessions to manage. Defaults to 8192
	325	(8K). Depending on how the <filename>pam_systemd.so</filename> module is included in the PAM stack
	326	configuration, further login sessions will either be refused, or permitted but not tracked by
	327	<filename>systemd-logind</filename>.</para></listitem>
	328	</varlistentry>
	329
90558f31 LP	330	<varlistentry>
	331	<term><varname>UserTasksMax=</varname></term>
	332
c06eec15 LP	333	<listitem><para>Sets the maximum number of OS tasks each user may run concurrently. This controls the
c06eec15 LP	334	<varname>TasksMax=</varname> setting of the per-user slice unit, see
90558f31	335	<citerefentry><refentrytitle>systemd.resource-control</refentrytitle><manvolnum>5</manvolnum></citerefentry>
f5058264 TH	336	for details. If assigned the special value <literal>infinity</literal>, no tasks limit is applied.
	337	Defaults to 33%, which equals 10813 with the kernel's defaults on the host, but might be smaller in
	338	OS containers.</para></listitem>
798d3a52 ZJS	339	</varlistentry>
	340
	341	<varlistentry>
	342	<term><varname>RemoveIPC=</varname></term>
	343
f59d94bc LP	344	<listitem><para>Controls whether System V and POSIX IPC objects belonging to the user shall be removed when the
	345	user fully logs out. Takes a boolean argument. If enabled, the user may not consume IPC resources after the
	346	last of the user's sessions terminated. This covers System V semaphores, shared memory and message queues, as
	347	well as POSIX shared memory and message queues. Note that IPC objects of the root user and other system users
	348	are excluded from the effect of this setting. Defaults to <literal>yes</literal>.</para></listitem>
798d3a52 ZJS	349	</varlistentry>
	350
	351	</variablelist>
	352	</refsect1>
	353
	354	<refsect1>
	355	<title>See Also</title>
	356	<para>
	357	<citerefentry><refentrytitle>systemd</refentrytitle><manvolnum>1</manvolnum></citerefentry>,
	358	<citerefentry><refentrytitle>systemd-logind.service</refentrytitle><manvolnum>8</manvolnum></citerefentry>,
	359	<citerefentry><refentrytitle>loginctl</refentrytitle><manvolnum>1</manvolnum></citerefentry>,
	360	<citerefentry><refentrytitle>systemd-system.conf</refentrytitle><manvolnum>5</manvolnum></citerefentry>
	361	</para>
	362	</refsect1>
8fa365e5 LP	363
8fa365e5 LP	364	</refentry>