# SOME DESCRIPTIVE TITLE
# Copyright (C) YEAR Free Software Foundation, Inc.
# This file is distributed under the same license as the PACKAGE package.
# FIRST AUTHOR <EMAIL@ADDRESS>, YEAR.
#
#, fuzzy
msgid ""
msgstr ""
"Project-Id-Version: PACKAGE VERSION\n"
"POT-Creation-Date: 2024-06-01 05:55+0200\n"
"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
"Language-Team: LANGUAGE <LL@li.org>\n"
"Language: \n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"

#. type: TH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "HOMECTL"
msgstr ""

#. type: TH
#: archlinux fedora-40 mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "systemd 255"
msgstr ""

#. type: TH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "homectl"
msgstr ""

#.  -----------------------------------------------------------------
#.  * MAIN CONTENT STARTS HERE *
#.  -----------------------------------------------------------------
#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "NAME"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm fedora-40 mageia-cauldron opensuse-tumbleweed
msgid "homectl - Create, remove, change or inspect home directories"
msgstr ""

#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "SYNOPSIS"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<homectl> [OPTIONS...] {COMMAND} [NAME...]"
msgstr ""

#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "DESCRIPTION"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<homectl> may be used to create, remove, change or inspect a user\\*(Aqs "
"home directory\\&. It\\*(Aqs primarily a command interfacing with B<systemd-"
"homed.service>(8)  which manages home directories of users\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Home directories managed by systemd-homed\\&.service are self-contained, and "
"thus include the user\\*(Aqs full metadata record in the home\\*(Aqs data "
"storage itself, making them easy to migrate between machines\\&. In "
"particular, a home directory describes a matching user record, and every "
"user record managed by systemd-homed\\&.service also implies existence and "
"encapsulation of a home directory\\&. The user account and home directory "
"become the same concept\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "The following backing storage mechanisms are supported:"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"An individual LUKS2 encrypted loopback file for a user, stored in /home/*\\&."
"home\\&. At login the file system contained in this files is mounted, after "
"the LUKS2 encrypted volume has been attached\\&. The user\\*(Aqs password is "
"identical to the encryption passphrase of the LUKS2 volume\\&. Access to "
"data without preceding user authentication is thus not possible, even for "
"the system administrator\\&. This storage mechanism provides the strongest "
"data security and is thus recommended\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Similar, but the LUKS2 encrypted file system is located on regular block "
"device, such as a USB storage stick\\&. In this mode home directories and "
"all data they include are nicely migratable between machines, simply by "
"plugging the USB stick into different systems at different times\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"An encrypted directory using \"fscrypt\" on file systems that support it (at "
"the moment this is primarily \"ext4\"), located in /home/*\\&.homedir\\&. "
"This mechanism also provides encryption, but substantially weaker than "
"LUKS2, as most file system metadata is unprotected\\&. Moreover it currently "
"does not support changing user passwords once the home directory has been "
"created\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"A \"btrfs\" subvolume for each user, also located in /home/*\\&.homedir\\&. "
"This provides no encryption, but good quota support\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"A regular directory for each user, also located in /home/*\\&.homedir\\&. "
"This provides no encryption, but is a suitable fallback available on all "
"machines, even where LUKS2, \"fscrypt\" or \"btrfs\" support is not "
"available\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "An individual Windows file share (CIFS) for each user\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that systemd-homed\\&.service and B<homectl> will not manage "
"\"classic\" UNIX user accounts as created with B<useradd>(8)  or similar "
"tools\\&. In particular, this functionality is not suitable for managing "
"system users (i\\&.e\\&. users with a UID below 1000) but is exclusive to "
"regular (\"human\") users\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that users/home directories managed via B<systemd-homed\\&.service> do "
"not show up in /etc/passwd and similar files, they are synthesized via glibc "
"NSS during runtime\\&. They are thus resolvable and may be enumerated via "
"the B<getent>(1)  tool\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"This tool interfaces directly with systemd-homed\\&.service, and may execute "
"specific commands on the home directories it manages\\&. Since every home "
"directory managed that way also defines a JSON user and group record these "
"home directories may also be inspected and enumerated via B<userdbctl>(1)\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Home directories managed by systemd-homed\\&.service are usually in one of "
"two states, or in a transition state between them: when \"active\" they are "
"unlocked and mounted, and thus accessible to the system and its programs; "
"when \"inactive\" they are not mounted and thus not accessible\\&. "
"Activation happens automatically at login of the user and usually can only "
"complete after a password (or other authentication token) has been "
"supplied\\&. Deactivation happens after the user fully logged out\\&. A home "
"directory remains active as long as the user is logged in at least once, "
"i\\&.e\\&. has at least one login session\\&. When the user logs in a second "
"time simultaneously the home directory remains active\\&. It is deactivated "
"only after the last of the user\\*(Aqs sessions ends\\&."
msgstr ""

#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "OPTIONS"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"The following general options are understood (further options that control "
"the various properties of user records managed by systemd-homed\\&.service "
"are documented further down):"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--identity=>I<FILE>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Read the user\\*(Aqs JSON record from the specified file\\&. If passed as \"-"
"\" read the user record from standard input\\&. The supplied JSON object "
"must follow the structure documented in \\m[blue]B<JSON User "
"Records>\\m[]\\&\\s-2\\u[1]\\d\\s+2\\&. This option may be used in "
"conjunction with the B<create> and B<update> commands (see below), where it "
"allows configuring the user record in JSON as-is, instead of setting the "
"individual user record properties (see below)\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-unstable fedora-40 fedora-rawhide mageia-cauldron
#: opensuse-tumbleweed
msgid "Added in version 245\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--json=>I<FORMAT>, B<-j>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Controls whether to output the user record in JSON format, if the B<inspect> "
"command (see below) is used\\&. Takes one of \"pretty\", \"short\" or "
"\"off\"\\&. If \"pretty\" human-friendly whitespace and newlines are "
"inserted in the output to make the JSON data more readable\\&. If \"short\" "
"all superfluous whitespace is suppressed\\&. If \"off\" (the default) the "
"user information is not shown in JSON format but in a friendly human "
"readable formatting instead\\&. The B<-j> option picks \"pretty\" when run "
"interactively and \"short\" otherwise\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--export-format=>I<FORMAT>, B<-E>, B<-EE>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"When used with the B<inspect> verb in JSON mode (see above) may be used to "
"suppress certain aspects of the JSON user record on output\\&. Specifically, "
"if \"stripped\" format is used the binding and runtime fields of the record "
"are removed\\&. If \"minimal\" format is used the cryptographic signature is "
"removed too\\&. If \"full\" format is used the full JSON record is shown "
"(this is the default)\\&. This option is useful for copying an existing user "
"record to a different system in order to create a similar user there with "
"the same settings\\&. Specifically: B<homectl inspect -EE | ssh "
"root@othersystem homectl create -i-> may be used as simple command line for "
"replicating a user on another host\\&.  B<-E> is equivalent to B<-j --export-"
"format=stripped>, B<-EE> to B<-j --export-format=minimal>\\&. Note that when "
"replicating user accounts user records acquired in \"stripped\" mode will "
"retain the original cryptographic signatures and thus may only be modified "
"when the private key to update them is available on the destination "
"machine\\&. When replicating users in \"minimal\" mode, the signature is "
"removed during the replication and thus the record will be implicitly signed "
"with the key of the destination machine and may be updated there without any "
"private key replication\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<-H>, B<--host=>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Execute the operation remotely\\&. Specify a hostname, or a username and "
"hostname separated by \"@\", to connect to\\&. The hostname may optionally "
"be suffixed by a port ssh is listening on, separated by \":\", and then a "
"container name, separated by \"/\", which connects directly to a specific "
"container on the specified host\\&. This will use SSH to talk to the remote "
"machine manager instance\\&. Container names may be enumerated with "
"B<machinectl -H >I<HOST>\\&. Put IPv6 addresses in brackets\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<-M>, B<--machine=>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Execute operation on a local container\\&. Specify a container name to "
"connect to, optionally prefixed by a user name to connect as and a "
"separating \"@\" character\\&. If the special string \"\\&.host\" is used in "
"place of the container name, a connection to the local system is made (which "
"is useful to connect to a specific user\\*(Aqs user bus: \"--user --"
"machine=lennart@\\&.host\")\\&. If the \"@\" syntax is not used, the "
"connection is made as root user\\&. If the \"@\" syntax is used either the "
"left hand side or the right hand side may be omitted (but not both) in which "
"case the local user name and \"\\&.host\" are implied\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--no-pager>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "Do not pipe output into a pager\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--no-legend>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Do not print the legend, i\\&.e\\&. column headers and the footer with "
"hints\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--no-ask-password>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "Do not query the user for authentication for privileged operations\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<-h>, B<--help>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "Print a short help text and exit\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--version>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "Print a short version string and exit\\&."
msgstr ""

#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "USER RECORD PROPERTIES"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"The following options control various properties of the user records/home "
"directories that systemd-homed\\&.service manages\\&. These switches may be "
"used in conjunction with the B<create> and B<update> commands for "
"configuring various aspects of the home directory and the user account:"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--real-name=>I<NAME>, B<-c> I<NAME>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"The real name for the user\\&. This corresponds with the GECOS field on "
"classic UNIX NSS records\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--realm=>I<REALM>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"The realm for the user\\&. The realm associates a user with a specific "
"organization or installation, and allows distinguishing users of the same "
"name defined in different contexts\\&. The realm can be any string that also "
"qualifies as valid DNS domain name, and it is recommended to use the "
"organization\\*(Aqs or installation\\*(Aqs domain name for this purpose, but "
"this is not enforced nor required\\&. On each system only a single user of "
"the same name may exist, and if a user with the same name and realm is seen "
"it is assumed to refer to the same user while a user with the same name but "
"different realm is considered a different user\\&. Note that this means that "
"two users sharing the same name but with distinct realms are not allowed on "
"the same system\\&. Assigning a realm to a user is optional\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--email-address=>I<EMAIL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes an electronic mail address to associate with the user\\&. On log-in "
"the I<$EMAIL> environment variable is initialized from this value\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--location=>I<TEXT>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes location specification for this user\\&. This is free-form text, which "
"might or might not be usable by geo-location applications\\&. Example: B<--"
"location=\"Berlin, Germany\"> or B<--location=\"Basement, Room 3a\">"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--icon-name=>I<ICON>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes an icon name to associate with the user, following the scheme defined "
"by the \\m[blue]B<Icon Naming Specification>\\m[]\\&\\s-2\\u[2]\\d\\s+2\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--home-dir=>I<PATH>, B<-d>I<PATH>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a path to use as home directory for the user\\&. Note that this is the "
"directory the user\\*(Aqs home directory is mounted to while the user is "
"logged in\\&. This is not where the user\\*(Aqs data is actually stored, see "
"B<--image-path=> for that\\&. If not specified defaults to /home/$USER\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--uid=>I<UID>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a preferred numeric UNIX UID to assign this user\\&. If a user is to "
"be created with the specified UID and it is already taken by a different "
"user on the local system then creation of the home directory is refused\\&. "
"Note though, if after creating the home directory it is used on a different "
"system and the configured UID is taken by another user there, then B<systemd-"
"homed> may assign the user a different UID on that system\\&. The specified "
"UID must be outside of the system user range\\&. It is recommended to use "
"the 60001\\&...60513 UID range for this purpose\\&. If not specified, the "
"UID is automatically picked\\&. If the home directory is found to be owned "
"by a different UID when logging in, the home directory and everything "
"underneath it will have its ownership changed automatically before login "
"completes\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-unstable fedora-40 fedora-rawhide mageia-cauldron
#: opensuse-tumbleweed
msgid ""
"Note that changing this option for existing home directories generally has "
"no effect on home directories that already have been registered locally "
"(have a local I<binding>), as the UID used for an account on the local "
"system is determined when the home directory is first activated on it, and "
"then remains in effect until the home directory is removed\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that users managed by B<systemd-homed> always have a matching group "
"associated with the same name as well as a GID matching the UID of the "
"user\\&. Thus, configuring the GID separately is not permitted\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--member-of=>I<GROUP>, B<-G> I<GROUP>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a comma-separated list of auxiliary UNIX groups this user shall belong "
"to\\&. Example: B<--member-of=wheel> to provide the user with administrator "
"privileges\\&. Note that B<systemd-homed> does not manage any groups besides "
"a group matching the user in name and numeric UID/GID\\&. Thus any groups "
"listed here must be registered independently, for example with "
"B<groupadd>(8)\\&. Any non-existent groups are ignored\\&. This option may "
"be used more than once, in which case all specified group lists are "
"combined\\&. If the user is currently a member of a group which is not "
"listed, the user will be removed from the group\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<--capability-bounding-set=>I<CAPABILITIES>, B<--capability-ambient-"
"set=>I<CAPABILITIES>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"These options take a space separated list of process capabilities (e\\&."
"g\\&.  B<CAP_WAKE_ALARM>, B<CAP_BLOCK_SUSPEND>, \\&...) that shall be set in "
"the capability bounding and ambient sets for all the user\\*(Aqs "
"sessions\\&. See B<capabilities>(7)  for details on the capabilities "
"concept\\&. These options may be used more than once, in which case the "
"specified lists are combined\\&. If the parameter begins with a \"~\" "
"character the effect is inverted: the specified capability is dropped from "
"the specific set\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-unstable fedora-40 fedora-rawhide mageia-cauldron
#: opensuse-tumbleweed
msgid "Added in version 254\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--skel=>I<PATH>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a file system path to a directory\\&. Specifies the skeleton directory "
"to initialize the home directory with\\&. All files and directories in the "
"specified path are copied into any newly create home directory\\&. If not "
"specified defaults to /etc/skel/\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--shell=>I<SHELL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a file system path\\&. Specifies the shell binary to execute on "
"terminal logins\\&. If not specified defaults to /bin/bash\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm fedora-40 mageia-cauldron opensuse-tumbleweed
msgid "B<--setenv=>I<VARIABLE>[=I<VALUE>]"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes an environment variable assignment to set for all user processes\\&. "
"May be used multiple times to set multiple environment variables\\&. When "
"\"=\" and I<VALUE> are omitted, the value of the variable with the same name "
"in the program environment will be used\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that a number of other settings also result in environment variables to "
"be set for the user, including B<--email=>, B<--timezone=> and B<--"
"language=>\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--timezone=>I<TIMEZONE>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a time zone location name that sets the timezone for the specified "
"user\\&. When the user logs in the I<$TZ> environment variable is "
"initialized from this setting\\&. Example: B<--timezone=Europe/Amsterdam> "
"will result in the environment variable \"TZ=:Europe/Amsterdam\"\\&. (\":\" "
"is used intentionally as part of the timezone specification, see "
"B<tzset>(3)\\&.)"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--language=>I<LANG>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm fedora-40 mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a specifier indicating the preferred language of the user\\&. The "
"I<$LANG> environment variable is initialized from this value on login, and "
"thus a value suitable for this environment variable is accepted here, for "
"example B<--language=de_DE\\&.UTF8>\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--ssh-authorized-keys=>I<KEYS>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Either takes a SSH authorized key line to associate with the user record or "
"a \"@\" character followed by a path to a file to read one or more such "
"lines from\\&. SSH keys configured this way are made available to SSH to "
"permit access to this home directory and user record\\&. This option may be "
"used more than once to configure multiple SSH keys\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--pkcs11-token-uri=>I<URI>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes an RFC 7512 PKCS#11 URI referencing a security token (e\\&.g\\&. "
"YubiKey or PIV smartcard) that shall be able to unlock the user account\\&. "
"The security token URI should reference a security token with exactly one "
"pair of X\\&.509 certificate and private key\\&. A random secret key is then "
"generated, encrypted with the public key of the X\\&.509 certificate, and "
"stored as part of the user record\\&. At login time it is decrypted with the "
"PKCS#11 module and then used to unlock the account and associated "
"resources\\&. See below for an example how to set up authentication with a "
"security token\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Instead of a valid PKCS#11 URI, the special strings \"list\" and \"auto\" "
"may be specified\\&. If \"list\" is passed, a brief table of suitable, "
"currently plugged in PKCS#11 hardware tokens is shown, along with their "
"URIs\\&. If \"auto\" is passed, a suitable PKCS#11 hardware token is "
"automatically selected (this operation will fail if there isn\\*(Aqt exactly "
"one suitable token discovered)\\&. The latter is a useful shortcut for the "
"most common case where a single PKCS#11 hardware token is plugged in\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that many hardware security tokens implement both PKCS#11/PIV and FIDO2 "
"with the \"hmac-secret\" extension (for example: the YubiKey 5 series), as "
"supported with the B<--fido2-device=> option below\\&. Both mechanisms are "
"similarly powerful, though FIDO2 is the more modern technology\\&. PKCS#11/"
"PIV tokens have the benefit of being recognizable before authentication and "
"hence can be used for implying the user identity to use for logging in, "
"which FIDO2 does not allow\\&. PKCS#11/PIV devices generally require "
"initialization (i\\&.e\\&. storing a private/public key pair on them, see "
"example below) before they can be used; FIDO2 security tokens generally do "
"not required that, and work out of the box\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--fido2-credential-algorithm=>I<STRING>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Specify COSE algorithm used in credential generation\\&. The default value "
"is \"es256\"\\&. Supported values are \"es256\", \"rs256\" and \"eddsa\"\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"\"es256\" denotes ECDSA over NIST P-256 with SHA-256\\&.  \"rs256\" denotes "
"2048-bit RSA with PKCS#1\\&.5 padding and SHA-256\\&.  \"eddsa\" denotes "
"EDDSA over Curve25519 with SHA-512\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm fedora-40 mageia-cauldron opensuse-tumbleweed
msgid "Note that your authenticator may not support some algorithms\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-unstable fedora-40 fedora-rawhide mageia-cauldron
#: opensuse-tumbleweed
msgid "Added in version 251\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--fido2-device=>I<PATH>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a path to a Linux \"hidraw\" device (e\\&.g\\&.  /dev/hidraw1), "
"referring to a FIDO2 security token implementing the \"hmac-secret\" "
"extension that shall be able to unlock the user account\\&. A random salt "
"value is generated on the host and passed to the FIDO2 device, which "
"calculates a HMAC hash of the salt using an internal secret key\\&. The "
"result is then used as the key to unlock the user account\\&. The random "
"salt is included in the user record, so that whenever authentication is "
"needed it can be passed to the FIDO2 token again\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Instead of a valid path to a FIDO2 \"hidraw\" device the special strings "
"\"list\" and \"auto\" may be specified\\&. If \"list\" is passed, a brief "
"table of suitable discovered FIDO2 devices is shown\\&. If \"auto\" is "
"passed, a suitable FIDO2 token is automatically selected, if exactly one is "
"discovered\\&. The latter is a useful shortcut for the most common case "
"where a single FIDO2 hardware token is plugged in\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that FIDO2 devices suitable for this option must implement the \"hmac-"
"secret\" extension\\&. Most current devices (such as the YubiKey 5 series) "
"do\\&. If the extension is not implemented the device cannot be used for "
"unlocking home directories\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"The FIDO2 device may be subsequently removed by setting the device path to "
"an empty string (e\\&.g\\&.  B<homectl update $USER --fido2-device=\"\">)\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that many hardware security tokens implement both FIDO2 and PKCS#11/PIV "
"(and thus may be used with either B<--fido2-device=> or B<--pkcs11-token-"
"uri=>), for a discussion see above\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-unstable fedora-40 fedora-rawhide mageia-cauldron
#: opensuse-tumbleweed
msgid "Added in version 246\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--fido2-with-client-pin=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"When enrolling a FIDO2 security token, controls whether to require the user "
"to enter a PIN when unlocking the account (the FIDO2 \"clientPin\" "
"feature)\\&. Defaults to \"yes\"\\&. (Note: this setting is without effect "
"if the security token does not support the \"clientPin\" feature at all, or "
"does not allow enabling or disabling it\\&.)"
msgstr ""

#. type: Plain text
#: archlinux debian-unstable fedora-40 fedora-rawhide mageia-cauldron
#: opensuse-tumbleweed
msgid "Added in version 249\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--fido2-with-user-presence=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"When enrolling a FIDO2 security token, controls whether to require the user "
"to verify presence (tap the token, the FIDO2 \"up\" feature) when unlocking "
"the account\\&. Defaults to \"yes\"\\&. (Note: this setting is without "
"effect if the security token does not support the \"up\" feature at all, or "
"does not allow enabling or disabling it\\&.)"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--fido2-with-user-verification=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"When enrolling a FIDO2 security token, controls whether to require user "
"verification when unlocking the account (the FIDO2 \"uv\" feature)\\&. "
"Defaults to \"no\"\\&. (Note: this setting is without effect if the security "
"token does not support the \"uv\" feature at all, or does not allow enabling "
"or disabling it\\&.)"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--recovery-key=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Accepts a boolean argument\\&. If enabled a recovery key is configured for "
"the account\\&. A recovery key is a computer generated access key that may "
"be used to regain access to an account if the password has been forgotten or "
"the authentication token lost\\&. The key is generated and shown on screen, "
"and should be printed or otherwise transferred to a secure location\\&. A "
"recovery key may be entered instead of a regular password to unlock the "
"account\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-unstable fedora-40 fedora-rawhide mageia-cauldron
#: opensuse-tumbleweed
msgid "Added in version 247\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--locked=>I<BOOLEAN>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a boolean argument\\&. Specifies whether this user account shall be "
"locked\\&. If true logins into this account are prohibited, if false (the "
"default) they are permitted (of course, only if authorization otherwise "
"succeeds)\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--not-before=>I<TIMESTAMP>, B<--not-after=>I<TIMESTAMP>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"These options take a timestamp string, in the format documented in B<systemd."
"time>(7)  and configures points in time before and after logins into this "
"account are not permitted\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--rate-limit-interval=>I<SECS>, B<--rate-limit-burst=>I<NUMBER>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Configures a rate limit on authentication attempts for this user\\&. If the "
"user attempts to authenticate more often than the specified number, on a "
"specific system, within the specified time interval authentication is "
"refused until the time interval passes\\&. Defaults to 10 times per 1min\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--password-hint=>I<TEXT>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a password hint to store alongside the user record\\&. This string is "
"stored accessible only to privileged users and the user itself and may not "
"be queried by other users\\&. Example: B<--password-hint=\"My first "
"pet\\*(Aqs name\">\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--enforce-password-policy=>I<BOOL>, B<-P>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a boolean argument\\&. Configures whether to enforce the system\\*(Aqs "
"password policy for this user, regarding quality and strength of selected "
"passwords\\&. Defaults to on\\&.  B<-P> is short for B<---enforce-password-"
"policy=no>\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--password-change-now=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a boolean argument\\&. If true the user is asked to change their "
"password on next login\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<--password-change-min=>I<TIME>, B<--password-change-max=>I<TIME>, B<--"
"password-change-warn=>I<TIME>, B<--password-change-inactive=>I<TIME>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Each of these options takes a time span specification as argument (in the "
"syntax documented in B<systemd.time>(7)) and configures various aspects of "
"the user\\*(Aqs password expiration policy\\&. Specifically, B<--password-"
"change-min=> configures how much time has to pass after changing the "
"password of the user until the password may be changed again\\&. If the user "
"tries to change their password before this time passes the attempt is "
"refused\\&.  B<--password-change-max=> configures how soon after it has been "
"changed the password expires and needs to be changed again\\&. After this "
"time passes logging in may only proceed after the password is changed\\&.  "
"B<--password-change-warn=> specifies how much earlier than then the time "
"configured with B<--password-change-max=> the user is warned at login to "
"change their password as it will expire soon\\&. Finally B<--password-change-"
"inactive=> configures the time which has to pass after the password as "
"expired until the user is not permitted to log in or change the password "
"anymore\\&. Note that these options only apply to password authentication, "
"and do not apply to other forms of authentication, for example PKCS#11-based "
"security token authentication\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--disk-size=>I<BYTES>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Either takes a size in bytes as argument (possibly using the usual K, M, G, "
"\\&... suffixes for 1024 base values), a percentage value, or the special "
"strings \"min\" or \"max\", and configures the disk space to assign to the "
"user\\&. If a percentage value is specified (i\\&.e\\&. the argument "
"suffixed with \"%\") it is taken relative to the available disk space of the "
"backing file system\\&. If specified as \"min\" assigns the minimal disk "
"space permitted by the constraints of the backing file system and other "
"limits, when specified as \"max\" assigns the maximum disk space "
"available\\&. If the LUKS2 backend is used this configures the size of the "
"loopback file and file system contained therein\\&. For the other storage "
"backends configures disk quota using the filesystem\\*(Aqs native quota "
"logic, if available\\&. If not specified, defaults to 85% of the available "
"disk space for the LUKS2 backend and to no quota for the others\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--access-mode=>I<MODE>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a UNIX file access mode written in octal\\&. Configures the access "
"mode of the home directory itself\\&. Note that this is only used when the "
"directory is first created, and the user may change this any time "
"afterwards\\&. Example: B<--access-mode=0700>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--umask=>I<MASK>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes the access mode mask (in octal syntax) to apply to newly created files "
"and directories of the user (\"umask\")\\&. If set this controls the initial "
"umask set for all login sessions of the user, possibly overriding the "
"system\\*(Aqs defaults\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--nice=>I<NICE>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes the numeric scheduling priority (\"nice level\") to apply to the "
"processes of the user at login time\\&. Takes a numeric value in the range "
"-20 (highest priority) to 19 (lowest priority)\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm fedora-40 mageia-cauldron opensuse-tumbleweed
msgid "B<--rlimit=>I<LIMIT>=I<VALUE>[:I<VALUE>]"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Allows configuration of resource limits for processes of this user, see "
"B<getrlimit>(2)  for details\\&. Takes a resource limit name (e\\&.g\\&.  "
"\"LIMIT_NOFILE\") followed by an equal sign, followed by a numeric limit\\&. "
"Optionally, separated by colon a second numeric limit may be specified\\&. "
"If two are specified this refers to the soft and hard limits, "
"respectively\\&. If only one limit is specified the setting sets both limits "
"in one\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--tasks-max=>I<TASKS>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a non-zero unsigned integer as argument\\&. Configures the maximum "
"number of tasks (i\\&.e\\&. threads, where each process is at least one "
"thread) the user may have at any given time\\&. This limit applies to all "
"tasks forked off the user\\*(Aqs sessions, even if they change user identity "
"via B<su>(1)  or a similar tool\\&. Use B<--rlimit=LIMIT_NPROC=> to place a "
"limit on the tasks actually running under the UID of the user, thus "
"excluding any child processes that might have changed user identity\\&. This "
"controls the I<TasksMax=> setting of the per-user systemd slice unit user-"
"$UID\\&.slice\\&. See B<systemd.resource-control>(5)  for further details\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--memory-high=>I<BYTES>, B<--memory-max=>I<BYTES>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Set a limit on the memory a user may take up on a system at any given time "
"in bytes (the usual K, M, G, \\&... suffixes are supported, to the base of "
"1024)\\&. This includes all memory used by the user itself and all processes "
"they forked off that changed user credentials\\&. This controls the "
"I<MemoryHigh=> and I<MemoryMax=> settings of the per-user systemd slice unit "
"user-$UID\\&.slice\\&. See B<systemd.resource-control>(5)  for further "
"details\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--cpu-weight=>I<WEIGHT>, B<--io-weight=>I<WEIGHT>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Set CPU and IO scheduling weights of the processes of the user, including "
"those of processes forked off by the user that changed user credentials\\&. "
"Takes a numeric value in the range 1\\&...10000\\&. This controls the "
"I<CPUWeight=> and I<IOWeight=> settings of the per-user systemd slice unit "
"user-$UID\\&.slice\\&. See B<systemd.resource-control>(5)  for further "
"details\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--storage=>I<STORAGE>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Selects the storage mechanism to use for this home directory\\&. Takes one "
"of \"luks\", \"fscrypt\", \"directory\", \"subvolume\", \"cifs\"\\&. For "
"details about these mechanisms, see above\\&. If a new home directory is "
"created and the storage type is not specifically specified, B<homed."
"conf>(5)  defines which default storage to use\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--image-path=>I<PATH>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a file system path\\&. Configures where to place the user\\*(Aqs home "
"directory\\&. When LUKS2 storage is used refers to the path to the loopback "
"file, otherwise to the path to the home directory (which may be in /home/ or "
"any other accessible filesystem)\\&. When unspecified defaults to /home/"
"$USER\\&.home when LUKS storage is used and /home/$USER\\&.homedir for the "
"other storage mechanisms\\&. Not defined for the \"cifs\" storage "
"mechanism\\&. To use LUKS2 storage on a regular block device (for example a "
"USB stick) pass the path to the block device here\\&. Specifying the path to "
"a directory here when using LUKS2 storage is not allowed\\&. Similar, "
"specifying the path to a regular file or device node is not allowed if any "
"of the other storage backends are used\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--drop-caches=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Automatically flush OS file system caches on logout\\&. This is useful in "
"combination with the fscrypt storage backend to ensure the OS does not keep "
"decrypted versions of the files and directories in memory (and accessible) "
"after logout\\&. This option is also supported on other backends, but should "
"not bring any benefit there\\&. Defaults to off, except if the selected "
"storage backend is fscrypt, where it defaults to on\\&. Note that flushing "
"OS caches will negatively influence performance of the OS shortly after "
"logout\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-unstable fedora-40 fedora-rawhide mageia-cauldron
#: opensuse-tumbleweed
msgid "Added in version 250\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--fs-type=>I<TYPE>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"When LUKS2 storage is used configures the file system type to use inside the "
"home directory LUKS2 container\\&. One of \"btrfs\", \"ext4\", \"xfs\"\\&. "
"If not specified B<homed.conf>(5)  defines which default file system type to "
"use\\&. Note that \"xfs\" is not recommended as its support for file system "
"resizing is too limited\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--luks-discard=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"When LUKS2 storage is used configures whether to enable the \"discard\" "
"feature of the file system\\&. If enabled the file system on top of the "
"LUKS2 volume will report empty block information to LUKS2 and the loopback "
"file below, ensuring that empty space in the home directory is returned to "
"the backing file system below the LUKS2 volume, resulting in a \"sparse\" "
"loopback file\\&. This option mostly defaults to off, since this permits "
"over-committing home directories which results in I/O errors if the "
"underlying file system runs full while the upper file system wants to "
"allocate a block\\&. Such I/O errors are generally not handled well by file "
"systems nor applications\\&. When LUKS2 storage is used on top of regular "
"block devices (instead of on top a loopback file) the discard logic defaults "
"to on\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--luks-offline-discard=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Similar to B<--luks-discard=>, controls the trimming of the file system\\&. "
"However, while B<--luks-discard=> controls what happens when the home "
"directory is active, B<--luks-offline-discard=> controls what happens when "
"it becomes inactive, i\\&.e\\&. whether to trim/allocate the storage when "
"deactivating the home directory\\&. This option defaults to on, to ensure "
"disk space is minimized while a user is not logged in\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--luks-extra-mount-options=>I<OPTIONS>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a string containing additional mount options to use when mounting the "
"LUKS volume\\&. If specified, this string will be appended to the default, "
"built-in mount options\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<--luks-cipher=>I<CIPHER>, B<--luks-cipher-mode=>I<MODE>, B<--luks-volume-"
"key-size=>I<BYTES>, B<--luks-pbkdf-type=>I<TYPE>, B<--luks-pbkdf-hash-"
"algorithm=>I<ALGORITHM>, B<--luks-pbkdf-force-iterations=>I<ITERATIONS>, B<--"
"luks-pbkdf-time-cost=>I<SECONDS>, B<--luks-pbkdf-memory-cost=>I<BYTES>, B<--"
"luks-pbkdf-parallel-threads=>I<THREADS>, B<--luks-sector-size=>I<BYTES>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Configures various cryptographic parameters for the LUKS2 storage "
"mechanism\\&. See B<cryptsetup>(8)  for details on the specific "
"attributes\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that B<homectl> uses bytes for key size, like /proc/crypto, but "
"B<cryptsetup>(8)  uses bits\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--auto-resize-mode=>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Configures whether to automatically grow and/or shrink the backing file "
"system on login and logout\\&. Takes one of the strings \"off\", \"grow\", "
"\"shrink-and-grow\"\\&. Only applies to the LUKS2 backend currently, and if "
"the btrfs file system is used inside it (since only then online growing/"
"shrinking of the file system is supported)\\&. Defaults to \"shrink-and-"
"grow\", if LUKS2/btrfs is used, otherwise is off\\&. If set to \"off\" no "
"automatic shrinking/growing during login or logout is done\\&. If set to "
"\"grow\" the home area is grown to the size configured via B<--disk-size=> "
"should it currently be smaller\\&. If it already matches the configured size "
"or is larger no operation is executed\\&. If set to \"shrink-and-grow\" the "
"home area is also resized during logout to the minimal size the used disk "
"space and file system constraints permit\\&. This mode thus ensures that "
"while a home area is activated it is sized to the configured size, but while "
"deactivated it is compacted taking up only the minimal space possible\\&. "
"Note that if the system is powered off abnormally or if the user otherwise "
"not logged out cleanly the shrinking operation will not take place, and the "
"user has to re-login/logout again before it is executed again\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--rebalance-weight=>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Configures the weight parameter for the free disk space rebalancing "
"logic\\&. Only applies to the LUKS2 backend (since for the LUKS2 backend "
"disk space is allocated from a per-user loopback file system instead of "
"immediately from a common pool like the other backends do it)\\&. In regular "
"intervals free disk space in the active home areas and their backing storage "
"is redistributed among them, taking the weight value configured here into "
"account\\&. Expects an integer in the range 1\\&...10000, or the special "
"string \"off\"\\&. If not specified defaults to 100\\&. The weight is used "
"to scale free space made available to the home areas: a home area with a "
"weight of 200 will get twice the free space as one with a weight of 100; a "
"home area with a weight of 50 will get half of that\\&. The backing file "
"system will be assigned space for a weight of 20\\&. If set to \"off\" no "
"automatic free space distribution is done for this home area\\&. Note that "
"resizing the home area explicitly (with B<homectl resize> see below) will "
"implicitly turn off the automatic rebalancing\\&. To reenable the automatic "
"rebalancing use B<--rebalance-weight=> with an empty parameter\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--nosuid=>I<BOOL>, B<--nodev=>I<BOOL>, B<--noexec=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Configures the \"nosuid\", \"nodev\" and \"noexec\" mount options for the "
"home directories\\&. By default \"nodev\" and \"nosuid\" are on, while "
"\"noexec\" is off\\&. For details about these mount options see "
"B<mount>(8)\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<--cifs-domain=>I<DOMAIN>, B<--cifs-user-name=>I<USER>, B<--cifs-"
"service=>I<SERVICE>, B<--cifs-extra-mount-options=>I<OPTIONS>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Configures the Windows File Sharing (CIFS) domain and user to associate with "
"the home directory/user account, as well as the file share (\"service\") to "
"mount as directory\\&. The latter is used when \"cifs\" storage is "
"selected\\&. The file share should be specified in format \"//I<host>/"
"I<share>/I<directory/\\&...>\"\\&. The directory part is optional \\(em if "
"not specified the home directory will be placed in the top-level directory "
"of the share\\&. The B<--cifs-extra-mount-options=> setting allows "
"specifying additional mount options when mounting the share, see B<mount."
"cifs>(8)  for details\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--stop-delay=>I<SECS>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Configures the time the per-user service manager shall continue to run after "
"the all sessions of the user ended\\&. The default is configured in B<logind."
"conf>(5)  (for home directories of LUKS2 storage located on removable media "
"this defaults to 0 though)\\&. A longer time makes sure quick, repetitive "
"logins are more efficient as the user\\*(Aqs service manager doesn\\*(Aqt "
"have to be started every time\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--kill-processes=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Configures whether to kill all processes of the user on logout\\&. The "
"default is configured in B<logind.conf>(5)\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<--auto-login=>I<BOOL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a boolean argument\\&. Configures whether the graphical UI of the "
"system should automatically log this user in if possible\\&. Defaults to "
"off\\&. If less or more than one user is marked this way automatic login is "
"disabled\\&."
msgstr ""

#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "COMMANDS"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "The following commands are understood:"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<list>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"List all home directories (along with brief details) currently managed by "
"systemd-homed\\&.service\\&. This command is also executed if none is "
"specified on the command line\\&. (Note that the list of users shown by this "
"command does not include users managed by other subsystems, such as system "
"users or any traditional users listed in /etc/passwd\\&.)"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<activate> I<USER> [I<USER\\&...>]"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Activate one or more home directories\\&. The home directories of each "
"listed user will be activated and made available under their mount points "
"(typically in /home/$USER)\\&. Note that any home activated this way stays "
"active indefinitely, until it is explicitly deactivated again (with "
"B<deactivate>, see below), or the user logs in and out again and it thus is "
"deactivated due to the automatic deactivation-on-logout logic\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Activation of a home directory involves various operations that depend on "
"the selected storage mechanism\\&. If the LUKS2 mechanism is used, this "
"generally involves: inquiring the user for a password, setting up a loopback "
"device, validating and activating the LUKS2 volume, checking the file "
"system, mounting the file system, and potentially changing the ownership of "
"all included files to the correct UID/GID\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<deactivate> I<USER> [I<USER\\&...>]"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Deactivate one or more home directories\\&. This undoes the effect of "
"B<activate>\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<inspect> I<USER> [I<USER\\&...>]"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Show various details about the specified home directories\\&. This shows "
"various information about the home directory and its user account, including "
"runtime data such as current state, disk use and similar\\&. Combine with "
"B<--json=> to show the detailed JSON user record instead, possibly combined "
"with B<--export-format=> to suppress certain aspects of the output\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<authenticate> I<USER> [I<USER\\&...>]"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Validate authentication credentials of a home directory\\&. This queries the "
"caller for a password (or similar) and checks that it correctly unlocks the "
"home directory\\&. This leaves the home directory in the state it is in, "
"i\\&.e\\&. it leaves the home directory in inactive state if it was inactive "
"before, and in active state if it was active before\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<create> I<USER>, B<create> B<--identity=>I<PATH> [I<USER>]"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Create a new home directory/user account of the specified name\\&. Use the "
"various user record property options (as documented above) to control "
"various aspects of the home directory and its user accounts\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm fedora-40 mageia-cauldron opensuse-tumbleweed
msgid ""
"The specified user name should follow the strict syntax described on "
"\\m[blue]B<User/Group Name Syntax>\\m[]\\&\\s-2\\u[3]\\d\\s+2\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<remove> I<USER>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Remove a home directory/user account\\&. This will remove both the home "
"directory\\*(Aqs user record and the home directory itself, and thus delete "
"all files and directories owned by the user\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<update> I<USER>, B<update> B<--identity=>I<PATH> [I<USER>]"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Update a home directory/user account\\&. Use the various user record "
"property options (as documented above) to make changes to the account, or "
"alternatively provide a full, updated JSON user record via the B<--"
"identity=> option\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that changes to user records not signed by a cryptographic private key "
"available locally are not permitted, unless B<--identity=> is used with a "
"user record that is already correctly signed by a recognized private key\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<passwd> I<USER>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "Change the password of the specified home directory/user account\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<resize> I<USER> I<BYTES>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Change the disk space assigned to the specified home directory\\&. If the "
"LUKS2 storage mechanism is used this will automatically resize the loopback "
"file and the file system contained within\\&. Note that if \"ext4\" is used "
"inside of the LUKS2 volume, it is necessary to deactivate the home directory "
"before shrinking it (i\\&.e the user has to log out)\\&. Growing can be done "
"while the home directory is active\\&. If \"xfs\" is used inside of the "
"LUKS2 volume the home directory may not be shrunk whatsoever\\&. On all "
"three of \"ext4\", \"xfs\" and \"btrfs\" the home directory may be grown "
"while the user is logged in, and on the latter also shrunk while the user is "
"logged in\\&. If the \"subvolume\", \"directory\", \"fscrypt\" storage "
"mechanisms are used, resizing will change file system quota\\&. The size "
"parameter may make use of the usual suffixes B, K, M, G, T (to the base of "
"1024)\\&. The special strings \"min\" and \"max\" may be specified in place "
"of a numeric size value, for minimizing or maximizing disk space assigned to "
"the home area, taking constraints of the file system, disk usage inside the "
"home area and on the backing storage into account\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<lock> I<USER>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Temporarily suspend access to the user\\*(Aqs home directory and remove any "
"associated cryptographic keys from memory\\&. Any attempts to access the "
"user\\*(Aqs home directory will stall until the home directory is unlocked "
"again (i\\&.e\\&. re-authenticated)\\&. This functionality is primarily "
"intended to be used during system suspend to make sure the user\\*(Aqs data "
"cannot be accessed until the user re-authenticates on resume\\&. This "
"operation is only defined for home directories that use the LUKS2 storage "
"mechanism\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<unlock> I<USER>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Resume access to the user\\*(Aqs home directory again, undoing the effect of "
"B<lock> above\\&. This requires authentication of the user, as the "
"cryptographic keys required for access to the home directory need to be "
"reacquired\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<lock-all>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Execute the B<lock> command on all suitable home directories at once\\&. "
"This operation is generally executed on system suspend (i\\&.e\\&. by "
"B<systemctl suspend> and related commands), to ensure all active user\\*(Aqs "
"cryptographic keys for accessing their home directories are removed from "
"memory\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<deactivate-all>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Execute the B<deactivate> command on all active home directories at once\\&. "
"This operation is generally executed on system shut down (i\\&.e\\&. by "
"B<systemctl poweroff> and related commands), to ensure all active "
"user\\*(Aqs home directories are fully deactivated before /home/ and related "
"file systems are unmounted\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<with> I<USER> I<COMMAND\\&...>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Activate the specified user\\*(Aqs home directory, run the specified command "
"(under the caller\\*(Aqs identity, not the specified user\\*(Aqs) and "
"deactivate the home directory afterwards again (unless the user is logged in "
"otherwise)\\&. This command is useful for running privileged backup scripts "
"and such, but requires authentication with the user\\*(Aqs credentials in "
"order to be able to unlock the user\\*(Aqs home directory\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<rebalance>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Rebalance free disk space between active home areas and the backing "
"storage\\&. See B<--rebalance-weight=> above\\&. This executes no operation "
"unless there\\*(Aqs at least one active LUKS2 home area that has disk space "
"rebalancing enabled\\&. This operation is synchronous: it will only complete "
"once disk space is rebalanced according to the rebalancing weights\\&. Note "
"that rebalancing also takes place automatically in the background in regular "
"intervals\\&. Use this command to synchronously ensure disk space is "
"properly redistributed before initiating an operation requiring large "
"amounts of disk space\\&."
msgstr ""

#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "EXIT STATUS"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "On success, 0 is returned, a non-zero failure code otherwise\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"When a command is invoked with B<with>, the exit status of the child is "
"propagated\\&. Effectively, B<homectl> will exit without error if the "
"command is successfully invoked I<and> finishes successfully\\&."
msgstr ""

#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "ENVIRONMENT"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_LOG_LEVEL>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm fedora-40 mageia-cauldron opensuse-tumbleweed
msgid ""
"The maximum log level of emitted messages (messages with a higher log level, "
"i\\&.e\\&. less important ones, will be suppressed)\\&. Either one of (in "
"order of decreasing importance)  B<emerg>, B<alert>, B<crit>, B<err>, "
"B<warning>, B<notice>, B<info>, B<debug>, or an integer in the range "
"0\\&...7\\&. See B<syslog>(3)  for more information\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_LOG_COLOR>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"A boolean\\&. If true, messages written to the tty will be colored according "
"to priority\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"This setting is only useful when messages are written directly to the "
"terminal, because B<journalctl>(1)  and other tools that display logs will "
"color messages based on the log level on their own\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_LOG_TIME>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"A boolean\\&. If true, console log messages will be prefixed with a "
"timestamp\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"This setting is only useful when messages are written directly to the "
"terminal or a file, because B<journalctl>(1)  and other tools that display "
"logs will attach timestamps based on the entry metadata on their own\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_LOG_LOCATION>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"A boolean\\&. If true, messages will be prefixed with a filename and line "
"number in the source code where the message originates\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that the log location is often attached as metadata to journal entries "
"anyway\\&. Including it directly in the message text can nevertheless be "
"convenient when debugging programs\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_LOG_TID>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"A boolean\\&. If true, messages will be prefixed with the current numerical "
"thread ID (TID)\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that the this information is attached as metadata to journal entries "
"anyway\\&. Including it directly in the message text can nevertheless be "
"convenient when debugging programs\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_LOG_TARGET>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"The destination for log messages\\&. One of B<console> (log to the attached "
"tty), B<console-prefixed> (log to the attached tty but with prefixes "
"encoding the log level and \"facility\", see B<syslog>(3), B<kmsg> (log to "
"the kernel circular log buffer), B<journal> (log to the journal), B<journal-"
"or-kmsg> (log to the journal if available, and to kmsg otherwise), B<auto> "
"(determine the appropriate log target automatically, the default), B<null> "
"(disable log output)\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_LOG_RATELIMIT_KMSG>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Whether to ratelimit kmsg or not\\&. Takes a boolean\\&. Defaults to "
"\"true\"\\&. If disabled, systemd will not ratelimit messages written to "
"kmsg\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_PAGER>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Pager to use when B<--no-pager> is not given; overrides I<$PAGER>\\&. If "
"neither I<$SYSTEMD_PAGER> nor I<$PAGER> are set, a set of well-known pager "
"implementations are tried in turn, including B<less>(1)  and B<more>(1), "
"until one is found\\&. If no pager implementation is discovered no pager is "
"invoked\\&. Setting this environment variable to an empty string or the "
"value \"cat\" is equivalent to passing B<--no-pager>\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note: if I<$SYSTEMD_PAGERSECURE> is not set, I<$SYSTEMD_PAGER> (as well as "
"I<$PAGER>) will be silently ignored\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_LESS>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "Override the options passed to B<less> (by default \"FRSXMK\")\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "Users might want to change two options in particular:"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<K>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"This option instructs the pager to exit immediately when Ctrl+C is "
"pressed\\&. To allow B<less> to handle Ctrl+C itself to switch back to the "
"pager command prompt, unset this option\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"If the value of I<$SYSTEMD_LESS> does not include \"K\", and the pager that "
"is invoked is B<less>, Ctrl+C will be ignored by the executable, and needs "
"to be handled by the pager\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "B<X>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"This option instructs the pager to not send termcap initialization and "
"deinitialization strings to the terminal\\&. It is set by default to allow "
"command output to remain visible in the terminal even after the pager "
"exits\\&. Nevertheless, this prevents some pager functionality from working, "
"in particular paged output cannot be scrolled with the mouse\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-unstable fedora-rawhide mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that setting the regular I<$LESS> environment variable has no effect "
"for B<less> invocations by systemd tools\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "See B<less>(1)  for more discussion\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_LESSCHARSET>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Override the charset passed to B<less> (by default \"utf-8\", if the "
"invoking terminal is determined to be UTF-8 compatible)\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-unstable fedora-rawhide mageia-cauldron opensuse-tumbleweed
msgid ""
"Note that setting the regular I<$LESSCHARSET> environment variable has no "
"effect for B<less> invocations by systemd tools\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_PAGERSECURE>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a boolean argument\\&. When true, the \"secure\" mode of the pager is "
"enabled; if false, disabled\\&. If I<$SYSTEMD_PAGERSECURE> is not set at "
"all, secure mode is enabled if the effective UID is not the same as the "
"owner of the login session, see B<geteuid>(2)  and "
"B<sd_pid_get_owner_uid>(3)\\&. In secure mode, B<LESSSECURE=1> will be set "
"when invoking the pager, and the pager shall disable commands that open or "
"create new files or start new subprocesses\\&. When I<$SYSTEMD_PAGERSECURE> "
"is not set at all, pagers which are not known to implement secure mode will "
"not be used\\&. (Currently only B<less>(1)  implements secure mode\\&.)"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Note: when commands are invoked with elevated privileges, for example under "
"B<sudo>(8)  or B<pkexec>(1), care must be taken to ensure that unintended "
"interactive features are not enabled\\&. \"Secure\" mode for the pager may "
"be enabled automatically as describe above\\&. Setting "
"I<SYSTEMD_PAGERSECURE=0> or not removing it from the inherited environment "
"allows the user to invoke arbitrary commands\\&. Note that if the "
"I<$SYSTEMD_PAGER> or I<$PAGER> variables are to be honoured, "
"I<$SYSTEMD_PAGERSECURE> must be set too\\&. It might be reasonable to "
"completely disable the pager using B<--no-pager> instead\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_COLORS>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"Takes a boolean argument\\&. When true, B<systemd> and related utilities "
"will use colors in their output, otherwise the output will be monochrome\\&. "
"Additionally, the variable can take one of the following special values: "
"\"16\", \"256\" to restrict the use of colors to the base 16 or 256 ANSI "
"colors, respectively\\&. This can be specified to override the automatic "
"decision based on I<$TERM> and what the console is connected to\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "I<$SYSTEMD_URLIFY>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"The value must be a boolean\\&. Controls whether clickable links should be "
"generated in the output for terminal emulators supporting this\\&. This can "
"be specified to override the decision that B<systemd> makes based on "
"I<$TERM> and other conditions\\&."
msgstr ""

#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "EXAMPLES"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<Example\\ \\&1.\\ \\&Create a user \"waldo\" in the administrator group "
"\"wheel\", and assign 500 MiB disk space to them\\&.>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "homectl create waldo --real-name=\"Waldo McWaldo\" -G wheel --disk-size=500M\n"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<Example\\ \\&2.\\ \\&Create a user \"wally\" on a USB stick, and assign a "
"maximum of 500 concurrent tasks to them\\&.>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "homectl create wally --real-name=\"Wally McWally\" --image-path=/dev/disk/by-id/usb-SanDisk_Ultra_Fit_476fff954b2b5c44-0:0 --tasks-max=500\n"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<Example\\ \\&3.\\ \\&Change nice level of user \"odlaw\" to +5 and make "
"sure the environment variable >I<$SOME> is set to the string \"THING\" for "
"them on login\\&."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "homectl update odlaw --nice=5 --setenv=SOME=THING\n"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<Example\\ \\&4.\\ \\&Set up authentication with a YubiKey security token "
"using PKCS#11/PIV:>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid ""
"# Clear the Yubikey from any old keys (careful!)\n"
"ykman piv reset\n"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid ""
"# Generate a new private/public key pair on the device, store the public key in \\*(Aqpubkey\\&.pem\\*(Aq\\&.\n"
"ykman piv generate-key -a RSA2048 9d pubkey\\&.pem\n"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid ""
"# Create a self-signed certificate from this public key, and store it on the device\\&.\n"
"ykman piv generate-certificate --subject \"Knobelei\" 9d pubkey\\&.pem\n"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid ""
"# We don\\*(Aqt need the public key on disk anymore\n"
"rm pubkey\\&.pem\n"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid ""
"# Allow the security token to unlock the account of user \\*(Aqlafcadio\\*(Aq\\&.\n"
"homectl update lafcadio --pkcs11-token-uri=auto\n"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<Example\\ \\&5.\\ \\&Set up authentication with a FIDO2 security token:>"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid ""
"# Allow a FIDO2 security token to unlock the account of user \\*(Aqnihilbaxter\\*(Aq\\&.\n"
"homectl update nihilbaxter --fido2-device=auto\n"
msgstr ""

#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "SEE ALSO"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"B<systemd>(1), B<systemd-homed.service>(8), B<homed.conf>(5), "
"B<userdbctl>(1), B<useradd>(8), B<cryptsetup>(8)"
msgstr ""

#. type: SH
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid "NOTES"
msgstr ""

#. type: IP
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid " 1."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "JSON User Records"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "\\%https://systemd.io/USER_RECORD"
msgstr ""

#. type: IP
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid " 2."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "Icon Naming Specification"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid ""
"\\%https://standards.freedesktop.org/icon-naming-spec/icon-naming-spec-"
"latest.html"
msgstr ""

#. type: IP
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
#, no-wrap
msgid " 3."
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "User/Group Name Syntax"
msgstr ""

#. type: Plain text
#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
#: mageia-cauldron opensuse-tumbleweed
msgid "\\%https://systemd.io/USER_NAMES"
msgstr ""

#. type: TH
#: debian-bookworm
#, no-wrap
msgid "systemd 254"
msgstr ""

#. type: TH
#: debian-unstable fedora-rawhide
#, no-wrap
msgid "systemd 256~rc3"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"homectl, systemd-homed-firstboot.service - Create, remove, change or inspect "
"home directories"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "B<--offline>"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"Do not attempt to update the copy of the user record and blob directory that "
"is embedded inside of the home area\\&. This allows for operation on home "
"areas that are absent, or without needing to authenticate as the user being "
"modified\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "Added in version 256\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "B<--setenv=>I<VARIABLE>B<[=>I<VALUE>B<]>"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"Takes a comma- or colon-separated list of languages preferred by the user, "
"ordered by descending priority\\&. The I<$LANG> and I<$LANGUAGE> environment "
"variables are initialized from this value on login, and thus values suitible "
"for these environment variables are accepted here, for example B<--"
"language=de_DE\\&.UTF-8>\\&. This option may be used more than once, in "
"which case the language lists are concatenated\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"Note that your authenticator may choose not to support some algorithms\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"B<--blob=>I<PATH>, B<-b> I<PATH>, B<--blob=>I<FILENAME>B<=>I<PATH>, B<-b> "
"I<FILENAME>=I<PATH>"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"Accepts either a directory path, or a file name followed by a file path\\&. "
"If just a directory path is specified, then the user\\*(Aqs entire blob "
"directory is replaced the specified path\\&. Note that this replacement is "
"performed before per-file manipulations are applied, which means these per-"
"file manipulations will be applied on top of the specified directory\\&. If "
"a filename and file path are specified, then the single specified blob file "
"will be overwritten with the specified path\\&. If completely blank, the "
"entire blob directory is emptied out (which also resets all previous blob-"
"related flags up to this point)\\&. If a filename is specified but the "
"corresponding path is blank, that single file will be deleted from the blob "
"directory\\&. All changes are performed in temporary copies of the specified "
"files in directories, which means that the originals specified on the "
"command line are not modified\\&. See \\m[blue]B<User Record Blob "
"Directories>\\m[]\\&\\s-2\\u[3]\\d\\s+2 for more information about blob "
"directories\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "B<--avatar=>I<PATH>, B<--login-background=>I<PATH>"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"Accept a file path\\&. If set, the specified file is used to overwrite the "
"corresponding file in the user\\*(Aqs blob directory\\&. If blank, the "
"corresponding file is deleted from the blob directory\\&. Essentially, these "
"options are shortcuts to B<--blob=>I<FILENAME>B<=>I<PATH> for the known "
"filenames defined in \\m[blue]B<User Record Blob "
"Directories>\\m[]\\&\\s-2\\u[3]\\d\\s+2\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "B<--rlimit=>I<LIMIT>B<=>I<VALUE>B<[:>I<VALUE>]"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "B<--session-launcher=>I<LAUNCHER>"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"Takes a string argument\\&. Configures the user\\*(Aqs preferred session "
"launcher \\&.desktop entry file (i\\&.e\\&.  \"gnome\", \"plasma\", or other "
"names that appear in /usr/share/xesssions/ or /usr/share/wayland-"
"sessions)\\&. This is read by the display manager to pick the default "
"session that is launched when the user logs in\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "B<--session-type=>I<TYPE>"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"Takes a string argument\\&. Configures the user\\*(Aqs preferred session "
"type (i\\&.e\\&.  \"x11\", \"wayland\", and other values accepted by "
"I<$XDG_SESSION_TYPE>)\\&. This is read by the display manage to pick the "
"default session type the user is logged into\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"The specified user name should follow the strict syntax described on "
"\\m[blue]B<User/Group Name Syntax>\\m[]\\&\\s-2\\u[4]\\d\\s+2\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "B<firstboot>"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"This command is supposed to be invoked during the initial boot of the "
"system\\&. It checks whether any regular home area exists so far, and if not "
"queries the user interactively on the console for user name and password and "
"creates one\\&. Alternatively, if one or more service credentials whose name "
"starts with \"home\\&.create\\&.\" are passed to the command (containing a "
"user record in JSON format) these users are automatically created at boot\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"This command is invoked by the systemd-homed-firstboot\\&.service service "
"unit\\&."
msgstr ""

#. type: SH
#: debian-unstable fedora-rawhide
#, no-wrap
msgid "CREDENTIALS"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"When invoked with the B<firstboot> command, B<homectl> supports the service "
"credentials logic as implemented by I<ImportCredential=>/I<LoadCredential=>/"
"I<SetCredential=> (see B<systemd.exec>(5)  for details)\\&. The following "
"credentials are used when passed in:"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "I<home\\&.create\\&.*>"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"If one or more credentials whose names begin with \"home\\&.create\\&.\", "
"followed by a valid UNIX username are passed, a new home area is created, "
"one for each specified user record\\&."
msgstr ""

#. type: SH
#: debian-unstable fedora-rawhide
#, no-wrap
msgid "KERNEL COMMAND LINE"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "I<systemd\\&.firstboot=>"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"This boolean will disable the effect of B<homectl firstboot> command\\&. "
"It\\*(Aqs primarily interpreted by B<systemd-firstboot>(1)\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid ""
"The maximum log level of emitted messages (messages with a higher log level, "
"i\\&.e\\&. less important ones, will be suppressed)\\&. Takes a comma-"
"separated list of values\\&. A value may be either one of (in order of "
"decreasing importance)  B<emerg>, B<alert>, B<crit>, B<err>, B<warning>, "
"B<notice>, B<info>, B<debug>, or an integer in the range 0\\&...7\\&. See "
"B<syslog>(3)  for more information\\&. Each value may optionally be prefixed "
"with one of B<console>, B<syslog>, B<kmsg> or B<journal> followed by a colon "
"to set the maximum log level for that specific log target (e\\&.g\\&.  "
"B<SYSTEMD_LOG_LEVEL=debug,console:info> specifies to log at debug level "
"except when logging to the console which should be at info level)\\&. Note "
"that the global maximum log level takes priority over any per target maximum "
"log levels\\&."
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "User Record Blob Directories"
msgstr ""

#. type: Plain text
#: debian-unstable fedora-rawhide
msgid "\\%https://systemd.io/USER_RECORD_BLOB_DIRS"
msgstr ""

#. type: IP
#: debian-unstable fedora-rawhide
#, no-wrap
msgid " 4."
msgstr ""