[systemd-devel] Service that runs with network credentials
Lennart Poettering
mzerqung at 0pointer.de
Thu Dec 5 09:37:42 UTC 2019
On Mi, 04.12.19 23:18, Kenneth Porter (shiva at sewingwitch.com) wrote:
> What's the best practice for defining a service that might require network
> credentials to run? Are there example unit files that do this? How does one
> set up the dependencies to access an LDAP or Active Directory server, for
> example?
I am not sure what "network credentials" is supposed to mean, but the
assumption is that network user/group naming services such as
LDAP/NIS/AD/… are set up properly as soon as nss-user-lookup.target is
reached. i.e. such infrastructure should be ordered before it so that
services requiring users/groups from this source to be resolvable can
be ordered after it.
This means, system services that need such users cannot run in early
boot, but only in late boot, with that target acting as boundary to
the front.
Lennart
--
Lennart Poettering, Berlin
More information about the systemd-devel
mailing list