SYSTEMD−HOMED.SERVICE - Online Linux Manual PageSection : 8
Updated :
Source : systemd 253
Note : systemd-homed.service
NAMEsystemd-homed.service, systemd-homed − Home Area/User Account Manager
SYNOPSISsystemd−homed.service /usr/lib/systemd/systemd−homed
DESCRIPTIONsystemd−homed is a system service that may be used to create, remove, change or inspect home areas (directories and network mounts and real or loopback block devices with a filesystem, optionally encrypted). Most of systemd−homed's functionality is accessible through the homectl(1) command. See the Home Directories[1] documentation for details about the format and design of home areas managed by systemd−homed.service. Each home directory managed by systemd−homed.service synthesizes a local user and group. These are made available to the system using the User/Group Record Lookup API via Varlink[2], and thus may be browsed with userdbctl(1).
KEY MANAGEMENTUser records are cryptographically signed with a public/private key pair (the signature is part of the JSON record itself). For a user to be permitted to log in locally the public key matching the signature of their user record must be installed. For a user record to be modified locally the private key matching the signature must be installed locally, too. The keys are stored in the /var/lib/systemd/home/ directory: /var/lib/systemd/home/local.private The private key of the public/private key pair used for local records. Currently, only a single such key may be installed. /var/lib/systemd/home/local.public The public key of the public/private key pair used for local records. Currently, only a single such key may be installed. /var/lib/systemd/home/*.public Additional public keys. Any users whose user records are signed with any of these keys are permitted to log in locally. An arbitrary number of keys may be installed this way. All key files listed above are in PEM format. In order to migrate a home directory from a host "foobar" to another host "quux" it is hence sufficient to copy /var/lib/systemd/home/local.public from the host "foobar" to "quux", maybe calling the file on the destination /var/lib/systemd/home/foobar.public, reflecting the origin of the key. If the user record should be modifiable on "quux" the pair /var/lib/systemd/home/local.public and /var/lib/systemd/home/local.private need to be copied from "foobar" to "quux", and placed under the identical paths there, as currently only a single private key is supported per host. Note of course that the latter means that user records generated/signed before the key pair is copied in, lose their validity.
SEE ALSOsystemd(1), homed.conf(5), homectl(1), pam_systemd_home(8), userdbctl(1), org.freedesktop.home1(5)
NOTES 1. Home Directories https://systemd.io/HOME_DIRECTORY 2. User/Group Record Lookup API via Varlink https://systemd.io/USER_GROUP_API 0
Johanes Gumabo
Data Size : 9,800 byte
man-systemd-homed.8Build : 2024-12-05, 20:55 :
Visitor Screen : x
Visitor Counter ( page / site ) : 3 / 184,161
Visitor ID : :
Visitor IP : 3.145.81.47 :
Visitor Provider : AMAZON-02 :
Provider Position ( lat x lon ) : 39.962500 x -83.006100 : x
Provider Accuracy Radius ( km ) : 1000 :
Provider City : Columbus :
Provider Province : Ohio , : ,
Provider Country : United States :
Provider Continent : North America :
Visitor Recorder : Version :
Visitor Recorder : Library :
Online Linux Manual Page : Version : Online Linux Manual Page - Fedora.40 - march=x86-64 - mtune=generic - 24.12.05
Online Linux Manual Page : Library : lib_c - 24.10.03 - march=x86-64 - mtune=generic - Fedora.40
Online Linux Manual Page : Library : lib_m - 24.10.03 - march=x86-64 - mtune=generic - Fedora.40
Data Base : Version : Online Linux Manual Page Database - 24.04.13 - march=x86-64 - mtune=generic - fedora-38
Data Base : Library : lib_c - 23.02.07 - march=x86-64 - mtune=generic - fedora.36
Very long time ago, I have the best tutor, Wenzel Svojanovsky . If someone knows the email address of Wenzel Svojanovsky , please send an email to johanes_gumabo@yahoo.co.id .
If error, please print screen and send to johanes_gumabo@yahoo.co.id
Under development. Support me via PayPal.