Jack Baldry
4cacab01f4
* Use relative aliases for all non-current Grafana aliases Signed-off-by: Jack Baldry <jack.baldry@grafana.com> * Remove all current page aliases find docs/sources -type f -name '*.md' -exec sed -z -i 's#\n *- /docs/grafana/latest/[^\n]*\n#\n#' {} \; find docs/sources -type f -name '*.md' -exec sed -Ez -i 's#\n((aliases:\n *-)|aliases:\n)#\n\2#' {} \; Signed-off-by: Jack Baldry <jack.baldry@grafana.com> Signed-off-by: Jack Baldry <jack.baldry@grafana.com>
26 lines
907 B
Markdown
26 lines
907 B
Markdown
---
|
|
title: Serving Grafana on a port < 1024
|
|
---
|
|
|
|
If you are using `systemd` and want to start Grafana on a port that is less than 1024, then you must add a `systemd` unit override.
|
|
|
|
1. The following command creates an override file in your configured editor:
|
|
|
|
```bash
|
|
# Alternatively, create a file in /etc/systemd/system/grafana-server.service.d/override.conf
|
|
systemctl edit grafana-server.service
|
|
```
|
|
|
|
1 Add these additional settings to grant the `CAP_NET_BIND_SERVICE` capability. To read more about capabilities, see [the manual page on capabilities.](https://man7.org/linux/man-pages/man7/capabilities.7.html)
|
|
|
|
```
|
|
[Service]
|
|
# Give the CAP_NET_BIND_SERVICE capability
|
|
CapabilityBoundingSet=CAP_NET_BIND_SERVICE
|
|
AmbientCapabilities=CAP_NET_BIND_SERVICE
|
|
|
|
# A private user cannot have process capabilities on the host's user
|
|
# namespace and thus CAP_NET_BIND_SERVICE has no effect.
|
|
PrivateUsers=false
|
|
```
|