Dockerization of SailPoint IdentityIQ
/ 3 min read
The purpose of this article is to show you how to use IdentityIQ with Docker and ease the process of upgrade.
At the office, I have to support and work with IdentityIQ and I’m also responsible for the integration of efixes, patches, and major upgrades. Before processing such tasks I like to take a look and play with the new version to get a glance at what I’m about to integrate. So like usual, I’m searching for ways to ease my job, automate and simplify processes when possible…
I’m surely not the only one with that redundant task. So, I decided to take on my own time outside the office to create a Docker configuration allowing us to mount a new version with a clean database.
Hope you will appreciate the effort 💪.
Important Notice
SailPoint IdentityIQ is software provided by SailPoint and it requires a license from them to be used. When a license is acquired, you will be able to go on the community website to download the binaries of IdentityIQ. Don’t ask for those binaries here, it won’t be provided.
Requirements
- A license from SailPoint for IdentityIQ (this is mandatory!)
- IdentityIQ 8.1 Binaries (including the patches and efixes)
- Docker (and docker-compose)
Since this project was created mostly for testing and education purposes, I’ve simplified the usage to make it easy to deploy new versions instantly without too much regard for data storage and persistence.
Preparation
Follow those simple steps to prepare your environment.
- Clone this repository: https://github.com/JD10NN3/docker-sailpoint-identityiq
- Drop the binaries to their respective folders inside the binaries folder
\
| Binary | Destination |
|---|---|
| identityiq-8.1.zip | binaries/base/ (only one file allowed) |
| identityiq-8.1p2.jar | binaries/patch/ (only one file allowed) |
| identityiq-8.1p2-XXXXX.zip | binaries/efixes/ (multiple files allowed) |
- Adjust the .env file to match the binaries you want to use.
TOMCAT_VERSION=9.0.43
Build & Launch
Run this simple command to launch your new instance.
docker-compose up --build
Yes… I’m boring with that… but it’s better to be safe than sorry. SailPoint IdentityIQ is not an open-source software and should be treated with that in mind. You must never publish the created images to public repositories. You’ve been warned again!
Start Fresh
Between different versions of IdentityIQ, you should delete the volumes created from previous executions by running this command:
docker-compose rm -v
Access
After successful deployment you should be able to access the different tools from those links:
- IdentityIQ from http://localhost:8080/ and http://localhost:8080/identityiq.
I’m not gonna provide any details regarding the authentication. You will find those details inside the software documentation.
- Tomcat manager from http://localhost:8080/manager/ with the username admin and password admin
- Adminer from http://localhost:8081/
Support
I’m not working for SailPoint and I will not provide any support for IdentityIQ. Please contact SailPoint if you need assistance with their product.
Regarding the provided repository, If you find something that is not working correctly or you need some assistance, take the time to open a detailed issue and I will be more than happy to take a look when I’m available.