journal-remote.conf.d(5) Journal remote service configuration files

Other Alias

journal-remote.conf

SYNOPSIS

/etc/systemd/journal-remote.conf

/etc/systemd/journald.conf.d/*.conf

/run/systemd/journald.conf.d/*.conf

/usr/lib/systemd/journald.conf.d/*.conf

DESCRIPTION

These files configure various parameters of the systemd-remote-journal application, systemd-journal-remote(8).

CONFIGURATION DIRECTORIES AND PRECEDENCE

The default configuration is defined during compilation, so a configuration file is only needed when it is necessary to deviate from those defaults. By default, the configuration file in /etc/systemd/ contains commented out entries showing the defaults as a guide to the administrator. This file can be edited to create local overrides.

When packages need to customize the configuration, they can install configuration snippets in /usr/lib/systemd/*.conf.d/. Files in /etc/ are reserved for the local administrator, who may use this logic to override the configuration files installed by vendor packages. The main configuration file is read before any of the configuration directories, and has the lowest precedence; entries in a file in any configuration directory override entries in the single configuration file. Files in the *.conf.d/ configuration subdirectories are sorted by their filename in lexicographic order, regardless of which of the subdirectories they reside in. If multiple files specify the same option, the entry in the file with the lexicographically latest name takes precedence. It is recommended to prefix all filenames in those subdirectories with a two-digit number and a dash, to simplify the ordering of the files.

To disable a configuration file supplied by the vendor, the recommended way is to place a symlink to /dev/null in the configuration directory in /etc/, with the same filename as the vendor configuration file.

OPTIONS

All options are configured in the "[Remote]" section:

Seal=

Periodically sign the data in the journal using Forward Secure Sealing.

SplitMode=

One of "host" or "none".

ServerKeyFile=

SSL key in PEM format.

ServerCertificateFile=

SSL CA certificate in PEM format.

TrustedCertificateFile=

SSL CA certificate.