# Install ONEWEB IAM

This section describes how to **deploy the ONEWEB Identity and Access Management (IAM)** component on WildFly using the **WildFly Management Console**.

ONEWEB IAM is responsible for **authentication, authorization, and user management** across the ONEWEB platform.\
Before deployment, required database configuration values must be prepared to ensure correct logging and class loading behavior.

***

#### ONEWEB IAM Application Packages

The ONEWEB IAM feature consists of multiple application archives.\
The primary IAM REST service package is shown below:

<figure><img src="https://2015371994-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FMpDjHWFRUtZ5nJcSfVXd%2Fuploads%2FmULL8YGcQ99irn3GgVeu%2F0?alt=media" alt=""><figcaption></figcaption></figure>

***

#### Prerequisite: Database Configuration for IAM

Before deploying ONEWEB IAM, configure the following values in the database table:

```
bpm.wf_t0_property
```

These properties define logging and class loader paths used by the IAM runtime.

| Property Name             | Property Value                      | Description                                |
| ------------------------- | ----------------------------------- | ------------------------------------------ |
| `bpm.ge.log4j.properties` | `/<oneweb>/common/log4j.properties` | Log4j configuration path for IAM           |
| `bpm.ge.classLoader.urls` | `/<oneweb>/pd/Files/`               | Upload directory for IAM‑related artifacts |

> Ensure that the referenced directories exist and that the application server has sufficient read/write permissions.

***

#### Step 1: Access WildFly Management Console

Log in to the **WildFly Management Console** using a web browser.

By default, the console is available at:

```
http://<Application Server IP>:9990
```

Use an administrator account with deployment privileges.

***

#### Step 2: Navigate to the Deployment Panel

1. From the Management Console dashboard, navigate to the **Deployment** panel
2. Click **Add** to deploy a new application archive

The Deployment panel is highlighted in the example below:

<figure><img src="https://2015371994-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FMpDjHWFRUtZ5nJcSfVXd%2Fuploads%2FDDqA8RnOk8LO8i7ECwQd%2F1?alt=media" alt=""><figcaption></figcaption></figure>

***

#### Step 3: Upload the IAM REST Service WAR File

1. Select **Upload new deployment**
2. Click **Next**
3. Choose the ONEWEB IAM REST Service WAR file

The package name follows this format:

```
IAM2RESTService.x.x.x.x.YYMMDD24HHMM.wildfly.war
```

Example upload screen:

<figure><img src="https://2015371994-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FMpDjHWFRUtZ5nJcSfVXd%2Fuploads%2FkXtJiHnIai4bguBhrWNE%2F2?alt=media" alt=""><figcaption></figcaption></figure>

After selecting the file, click **Next** to continue.

***

#### Step 4: Enable the Deployment

1. Select **Enable** to activate the IAM service immediately after deployment
2. Click **Finish** to complete the deployment process

<figure><img src="https://2015371994-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FMpDjHWFRUtZ5nJcSfVXd%2Fuploads%2Fr4HIWrAf3tDSk1QhSCKl%2F3?alt=media" alt=""><figcaption></figcaption></figure>

Wait until the confirmation message indicates that the application package has been deployed successfully.

***

#### Step 5: Deploy Additional IAM Packages

After the primary IAM REST service is deployed successfully, deploy the remaining IAM application packages using the **same deployment process**.

<figure><img src="https://2015371994-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FMpDjHWFRUtZ5nJcSfVXd%2Fuploads%2Fje9uePXXlSBnbJOGzvBR%2F4?alt=media" alt=""><figcaption></figcaption></figure>

Ensure that all required IAM packages are enabled.

***

#### Step 6: Verify IAM Deployment

After all IAM components are deployed, verify that the IAM web interface is accessible.

Open a web browser and navigate to:

```
http://<Application Server IP>:<Port>/IAM2Web
```

A successful load of the IAM interface confirms that the ONEWEB IAM component has been deployed and initialized correctly.

<figure><img src="https://2015371994-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FMpDjHWFRUtZ5nJcSfVXd%2Fuploads%2FjjKEWjsmRRPNlNRxp58w%2F5?alt=media" alt=""><figcaption></figcaption></figure>

***

#### Deployment Result

After completing the above steps:

* ONEWEB IAM is deployed on WildFly
* Authentication and authorization services are active
* User and role management is available
* The platform security foundation is ready for use by other ONEWEB components


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.onewebstack.com/getting-started/platform-configuration/platform-components-overview-and-management/install-oneweb-integration-components/install-oneweb-iam.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.