1. Home
2. Questions
3. Unanswered
4. AI Assist Labs
5. Tags
7. Chat
8. Users
10. Companies
Teams

Ask questions, find answers and collaborate at work with Stack Overflow for Teams.
Try Teams for free Explore Teams
Teams
Ask questions, find answers and collaborate at work with Stack Overflow for Teams. Explore Teams

How can I set capability to systemd user service?

Ask Question

Asked 1 year, 1 month ago

Modified 1 year, 1 month ago

Viewed 106 times

0

I have a systemd user service (not system service with a User=), But I need grant NET_ADMIN to this service, how to do it?

I can use fcap, but I'm trying to find another way.

Thanks.

edited Sep 12, 2024 at 22:27

asked Sep 12, 2024 at 19:13

GongT

112 bronze badges

I think you may be looking for the AmbientCapabilities option, describes in the Capabilities section of the systemd.exec man page.

larsks
– larsks

2024-09-12 21:24:55 +00:00
Commented Sep 12, 2024 at 21:24
@larsks But it only works for a system service, not user service.

GongT
– GongT

2024-09-12 22:26:17 +00:00
Commented Sep 12, 2024 at 22:26
Oh, sorry, I missed that the first time around.

larsks
– larsks

2024-09-12 23:29:34 +00:00
Commented Sep 12, 2024 at 23:29
1

User services can be defined by the user, so having a mechanism for adding capabilities the user does not have would be a security violation. The point of the service model is to have system services that can be activated from a user context.

Simon Richter
– Simon Richter

2024-09-13 03:02:09 +00:00
Commented Sep 13, 2024 at 3:02

Add a comment |

0

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.