1<?xml version="1.0" encoding="UTF-8"?> <!--*-nxml-*--> 2<!DOCTYPE policyconfig PUBLIC "-//freedesktop//DTD PolicyKit Policy Configuration 1.0//EN" 3 "http://www.freedesktop.org/standards/PolicyKit/1/policyconfig.dtd"> 4 5<!-- 6 SPDX-License-Identifier: LGPL-2.1-or-later 7 8 This file is part of systemd. 9 10 systemd is free software; you can redistribute it and/or modify it 11 under the terms of the GNU Lesser General Public License as published by 12 the Free Software Foundation; either version 2.1 of the License, or 13 (at your option) any later version. 14--> 15 16<policyconfig> 17 18 <vendor>The systemd Project</vendor> 19 <vendor_url>https://systemd.io</vendor_url> 20 21 <action id="org.freedesktop.network1.set-ntp-servers"> 22 <description gettext-domain="systemd">Set NTP servers</description> 23 <message gettext-domain="systemd">Authentication is required to set NTP servers.</message> 24 <defaults> 25 <allow_any>auth_admin</allow_any> 26 <allow_inactive>auth_admin</allow_inactive> 27 <allow_active>auth_admin_keep</allow_active> 28 </defaults> 29 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 30 </action> 31 32 <action id="org.freedesktop.network1.set-dns-servers"> 33 <description gettext-domain="systemd">Set DNS servers</description> 34 <message gettext-domain="systemd">Authentication is required to set DNS servers.</message> 35 <defaults> 36 <allow_any>auth_admin</allow_any> 37 <allow_inactive>auth_admin</allow_inactive> 38 <allow_active>auth_admin_keep</allow_active> 39 </defaults> 40 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 41 </action> 42 43 <action id="org.freedesktop.network1.set-domains"> 44 <description gettext-domain="systemd">Set domains</description> 45 <message gettext-domain="systemd">Authentication is required to set domains.</message> 46 <defaults> 47 <allow_any>auth_admin</allow_any> 48 <allow_inactive>auth_admin</allow_inactive> 49 <allow_active>auth_admin_keep</allow_active> 50 </defaults> 51 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 52 </action> 53 54 <action id="org.freedesktop.network1.set-default-route"> 55 <description gettext-domain="systemd">Set default route</description> 56 <message gettext-domain="systemd">Authentication is required to set default route.</message> 57 <defaults> 58 <allow_any>auth_admin</allow_any> 59 <allow_inactive>auth_admin</allow_inactive> 60 <allow_active>auth_admin_keep</allow_active> 61 </defaults> 62 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 63 </action> 64 65 <action id="org.freedesktop.network1.set-llmnr"> 66 <description gettext-domain="systemd">Enable/disable LLMNR</description> 67 <message gettext-domain="systemd">Authentication is required to enable or disable LLMNR.</message> 68 <defaults> 69 <allow_any>auth_admin</allow_any> 70 <allow_inactive>auth_admin</allow_inactive> 71 <allow_active>auth_admin_keep</allow_active> 72 </defaults> 73 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 74 </action> 75 76 <action id="org.freedesktop.network1.set-mdns"> 77 <description gettext-domain="systemd">Enable/disable multicast DNS</description> 78 <message gettext-domain="systemd">Authentication is required to enable or disable multicast DNS.</message> 79 <defaults> 80 <allow_any>auth_admin</allow_any> 81 <allow_inactive>auth_admin</allow_inactive> 82 <allow_active>auth_admin_keep</allow_active> 83 </defaults> 84 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 85 </action> 86 87 <action id="org.freedesktop.network1.set-dns-over-tls"> 88 <description gettext-domain="systemd">Enable/disable DNS over TLS</description> 89 <message gettext-domain="systemd">Authentication is required to enable or disable DNS over TLS.</message> 90 <defaults> 91 <allow_any>auth_admin</allow_any> 92 <allow_inactive>auth_admin</allow_inactive> 93 <allow_active>auth_admin_keep</allow_active> 94 </defaults> 95 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 96 </action> 97 98 <action id="org.freedesktop.network1.set-dnssec"> 99 <description gettext-domain="systemd">Enable/disable DNSSEC</description> 100 <message gettext-domain="systemd">Authentication is required to enable or disable DNSSEC.</message> 101 <defaults> 102 <allow_any>auth_admin</allow_any> 103 <allow_inactive>auth_admin</allow_inactive> 104 <allow_active>auth_admin_keep</allow_active> 105 </defaults> 106 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 107 </action> 108 109 <action id="org.freedesktop.network1.set-dnssec-negative-trust-anchors"> 110 <description gettext-domain="systemd">Set DNSSEC Negative Trust Anchors</description> 111 <message gettext-domain="systemd">Authentication is required to set DNSSEC Negative Trust Anchors.</message> 112 <defaults> 113 <allow_any>auth_admin</allow_any> 114 <allow_inactive>auth_admin</allow_inactive> 115 <allow_active>auth_admin_keep</allow_active> 116 </defaults> 117 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 118 </action> 119 120 <action id="org.freedesktop.network1.revert-ntp"> 121 <description gettext-domain="systemd">Revert NTP settings</description> 122 <message gettext-domain="systemd">Authentication is required to reset NTP settings.</message> 123 <defaults> 124 <allow_any>auth_admin</allow_any> 125 <allow_inactive>auth_admin</allow_inactive> 126 <allow_active>auth_admin_keep</allow_active> 127 </defaults> 128 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 129 </action> 130 131 <action id="org.freedesktop.network1.revert-dns"> 132 <description gettext-domain="systemd">Revert DNS settings</description> 133 <message gettext-domain="systemd">Authentication is required to reset DNS settings.</message> 134 <defaults> 135 <allow_any>auth_admin</allow_any> 136 <allow_inactive>auth_admin</allow_inactive> 137 <allow_active>auth_admin_keep</allow_active> 138 </defaults> 139 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 140 </action> 141 142 <action id="org.freedesktop.network1.forcerenew"> 143 <description gettext-domain="systemd">DHCP server sends force renew message</description> 144 <message gettext-domain="systemd">Authentication is required to send force renew message.</message> 145 <defaults> 146 <allow_any>auth_admin</allow_any> 147 <allow_inactive>auth_admin</allow_inactive> 148 <allow_active>auth_admin_keep</allow_active> 149 </defaults> 150 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 151 </action> 152 153 <action id="org.freedesktop.network1.renew"> 154 <description gettext-domain="systemd">Renew dynamic addresses</description> 155 <message gettext-domain="systemd">Authentication is required to renew dynamic addresses.</message> 156 <defaults> 157 <allow_any>auth_admin</allow_any> 158 <allow_inactive>auth_admin</allow_inactive> 159 <allow_active>auth_admin_keep</allow_active> 160 </defaults> 161 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 162 </action> 163 164 <action id="org.freedesktop.network1.reload"> 165 <description gettext-domain="systemd">Reload network settings</description> 166 <message gettext-domain="systemd">Authentication is required to reload network settings.</message> 167 <defaults> 168 <allow_any>auth_admin</allow_any> 169 <allow_inactive>auth_admin</allow_inactive> 170 <allow_active>auth_admin_keep</allow_active> 171 </defaults> 172 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 173 </action> 174 175 <action id="org.freedesktop.network1.reconfigure"> 176 <description gettext-domain="systemd">Reconfigure network interface</description> 177 <message gettext-domain="systemd">Authentication is required to reconfigure network interface.</message> 178 <defaults> 179 <allow_any>auth_admin</allow_any> 180 <allow_inactive>auth_admin</allow_inactive> 181 <allow_active>auth_admin_keep</allow_active> 182 </defaults> 183 <annotate key="org.freedesktop.policykit.owner">unix-user:systemd-network</annotate> 184 </action> 185 186</policyconfig> 187