The configuration import subsystem sets up various things for users that it considers to be actual people.
It sets up several per-user system-level services and a target that encompasses them.
It sets up several per-user user-level services and targets.
passwd database is consulted for the list of user accounts on the system.
User accounts are considered to be actual people when they satisfy all of the following conditions:
Their login shell is not
They do not match any of the well-known Debian or FreeBSD system user accounts such as
The list of system accounts includes
root and no per-user system-level services or per-user management is set up for the superuser.
Accounts are not checked to see whether they have a home directory, which one might think to be a way to detect users that are people.
It is possible that the home directory of a real person's account is auto-mounted and that at import time it is currently not.
Moreover: several non-people accounts have valid home directories, such as
alias (for qmail),
Accounts are not considered non-people for having "*" (or some such) as their password, which one might think to be another way to detect users that are people. It is legitimate for a real person's account to have no password in the user account database, and always use private/public keys for login authentication.
Conversely, accounts are not considered people for having an unlocked, proper, password.