Can I still use nixos-rebuild?
Yes, you can still use nixos-rebuild with clan!
Clan is built on top of standard NixOS and uses nixos-rebuild internally.
However, there are important considerations when using nixos-rebuild directly instead of clan machines update.
Important Considerations
Vars Must Be Uploaded First
If your configuration uses clan vars, failing to run clan vars upload before nixos-rebuild will result in missing secrets and potentially broken services.
Build Host Configuration
Clan automatically handles build host configuration based on your machine settings.
When using nixos-rebuild manually, you need to specify --build-host and --target-host options yourself.
How Clan Uses nixos-rebuild
Clan doesn't replace nixos-rebuild - it enhances it. When you run clan machines update, clan:
- Generates and uploads secrets/variables (if any)
- Uploads the flake source to the target/build host (if needed)
- Runs
nixos-rebuild switchwith the appropriate options - Handles remote building and deployment automatically
Under the hood, clan executes commands like:
When You Need clan vars upload
If your clan configuration uses variables (vars) - generated secrets, keys, or configuration values - you must run clan vars upload before using nixos-rebuild directly.
Systems that use vars include:
- Any
clanModuleswith generated secrets (zerotier, borgbackup, etc.) - Custom generators that create passwords or keys
- Services that need shared configuration values
Systems that don't need vars:
- Basic NixOS configurations without clan-specific services
- Static configurations with hardcoded values
- Systems using only traditional NixOS secrets management
Manual nixos-rebuild Workflow
When you want to use nixos-rebuild directly:
Step 1: Upload vars (if needed)
Step 2: Run nixos-rebuild
Related Documentation
- Update Your Machines - Using clan's update command
- Variables (Vars) - Understanding the vars system