# Installing IAM Console Guide to install IAM Console using Docker. There is a public docker image at docker hub: [https://hub.docker.com/r/soffid/iam-console/](https://hub.docker.com/r/soffid/iam-console/) ## Prerequisites - Docker - 8GB RAM - > 10GB disk space (50GB recomended) - [Supported database installed](https://bookstack.soffid.com/books/installation/page/initialize-database-using-docker) ## Video Tutorial ## Installation To configure IAM console, the following environment variables can be set:
VariableDescriptionExample
DB\_URLJDBC URLjdbc:mariadb://dbcontainer/soffid jdbc:oracle:thin:@HOST:PORT:SID jdbc:oracle:thin:@//HOST:PORT/SERVICENAME
DB\_USERDatabase userSoffid
DB\_PASSWORDDatabase password5uper5ecret
JAVA\_OPTJava virtual machine options-Xmx4096m
SECURE(optional) Enables the Java Security Managertrue
SOFFID\_TRUSTED\_SCRIPTS(optional) Allows you to use insecure classes. Available since console version 3.5.6 true false
HIDE\_MENU(optional) Allows you to hide the Console menu options. Available since console version 3.5.6 soffid.admin You can choose the proper option from the Console.yaml file.
AUTH\_METHODS(optional) Allows to force the authentication mechanisms. This configuration overrides the one configured in the authentication option of the Soffid console. Available since console version 3.5.6 Options SAML PASSWORD SAML PASSWORD
EXTERNAL\_URL(optional) Allows to override host name configuration when there are two Consoles. Available since console version 3.5.9.5 https://soffid.lab.internal.com
Additional parameters to configure the database connections. Allows you to establish the min and the max of database connections:
VariableDescriptionExample
DBPOOL\_MIN\_IDLEThe minimum number of connections should be kept in the pool at all times.1 or 2
DBPOOL\_MAX\_IDLEThe maximum number of connections should be kept in the pool at all times.between 10 and 15
DBPOOL\_INITIALThe connection number will be established when the connection pool is started.3 or 4
DBPOOL\_MAXThe maximum number of active connections that can be allocated. If no value is indicated, the default value is 30. The transaction fails if the maximum connections are reached within 30 seconds and no connection is released. 25
The following volumes must be defined by default:
VolumeUsage
/opt/soffid/iam-console-3/logsConsole log files `/opt/soffid/iam-console-3/logs`
/opt/soffid/iam-console-3/indexText search engine index files. It can be erased at any time. The engine will regenerate the search engine. `/opt/soffid/iam-console-3/index/`
/opt/soffid/iam-console-3/confConfiguration files, including server.xml and tomee.xml files `/opt/soffid/iam-console-3/conf`
Here you have a sample command to start a docker container running IAM console, in this case the docker will be in a docker network, previously created. MariaDB docker is at the same network. ```shell docker run -d \ -e DB_URL=jdbc:mariadb://mariadb-service/soffid \ -e DB_USER=soffid \ -e DB_PASSWORD=soffid \ --name=iam-console \ --publish=8080:8080 \ --network=soffidnet \ soffid/iam-console ``` To see console log files, execute: ```shell docker logs -f iam-console ```
By default, the 8080 port will be exposed. When the TLS connection is going to be configured, add the tag --publish=443:443 to publish the TLS port.

When the console is created, the password for the user *admin* will be *changeit* and it will be valid for 24 hours.

Now you can connect the Soffid Console [http://localhost:8080/soffid](http://localhost:8080/soffid)/The first thing you must do is to change the admin user password.

Next Step: [Installing Sync server](https://bookstack.soffid.com/books/installation/page/installing-sync-server-b3e "Installing Sync server")