diff --git a/man/nss-systemd.xml b/man/nss-systemd.xml
index 8fde11867c..e343c406f2 100644
--- a/man/nss-systemd.xml
+++ b/man/nss-systemd.xml
@@ -18,7 +18,7 @@
nss-systemd
libnss_systemd.so.2
- Provide UNIX user and group name resolution for dynamic users and groups.
+ Provide UNIX user and group name resolution for user/group lookup via Varlink
@@ -28,16 +28,24 @@
Description
- nss-systemd is a plug-in module for the GNU Name Service Switch (NSS) functionality of the
- GNU C Library (glibc), providing UNIX user and group name resolution for dynamic users and
- groups allocated through the DynamicUser= option in systemd unit files. See
- systemd.exec5 for details on
- this option.
+ nss-systemd is a plug-in module for the GNU Name Service Switch (NSS)
+ functionality of the GNU C Library (glibc), providing UNIX user and group name
+ resolution for services implementing the User/Group Record
+ Lookup API via Varlink, such as the system and service manager
+ systemd1 (for its
+ DynamicUser= feature, see
+ systemd.exec5 for
+ details) or
+ systemd-homed.service8.
This module also ensures that the root and nobody users and groups (i.e. the users/groups with the UIDs/GIDs
0 and 65534) remain resolvable at all times, even if they aren't listed in /etc/passwd or
/etc/group, or if these files are missing.
+ This module preferably utilizes
+ systemd-userdbd.service8
+ for resolving users and groups, but also works without the service running.
+
To activate the NSS module, add systemd to the lines starting with
passwd: and group: in /etc/nsswitch.conf.
@@ -54,7 +62,7 @@
passwd: compat mymachines systemd
-group: compat mymachines systemd
+group: compat [SUCCESS=merge] mymachines [SUCCESS=merge] systemd
shadow: compat
hosts: files mymachines resolve [!UNAVAIL=return] dns myhostname