3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-07-29 14:39:40 +02:00
Code Issues Projects Releases Packages Wiki Activity

document binding service to 443 (#2487) (#2499)

Browse source 
Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
This commit is contained in:
backport-actions-token[bot] 2021-08-19 21:37:33 -07:00 committed by GitHub
parent 00a3911a50
commit 18e481d76e
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 12 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

17
docs/docs/install/binary.md
View file

@ -45,11 +45,17 @@ You can also set some or all of your configuration keys as environment variables
### OS Package
Enable and start the service:
1. The following command allows the Pomerium systemd service to bind to [privileged port] `443`:
```bash
sudo systemctl enable --now pomerium.service
```
```bash
echo -e "[Service]\nAmbientCapabilities=CAP_NET_BIND_SERVICE" | sudo SYSTEMD_EDITOR=tee systemctl edit pomerium
```
1. Enable and start the service:
```bash
sudo systemctl enable --now pomerium.service
```
### Manual Installation
@ -70,4 +76,5 @@ Browse to `external-verify.your.domain.example`. Connections between you and [ve
[tls certificates]: /docs/topics/certificates.md
[Cloudsmith]: https://cloudsmith.io
[cloudsmith-repo]: https://cloudsmith.io/~pomerium/repos/pomerium/groups/
[Reference]: /reference/readme.md
[Reference]: /reference/readme.md
[privileged port]: https://www.w3.org/Daemon/User/Installation/PrivilegedPorts.html