Database configuration

IAM keeps state in a MariaDB/MySQL database, and will need its own schema and a user that has read/write/schema change privileges on such database.

IAM has been tested successfully against:

MySQL v. 5.5.5 and 8
MariaDB v. 10.1.22

For more instructions on how to create a database schema and a user with administrator privileges on it, see the MariaDB documentation or MySQL8 reference manual.

Assuming the organization that IAM will manage is called test, the following commands can be used to create a database and a user for the IAM application:

CREATE DATABASE iam_test_db CHARACTER SET latin1 COLLATE latin1_swedish_ci;
CREATE USER 'iam_test'@'%' identified by 'some_super_secure_password';
GRANT ALL PRIVILEGES on iam_test_db.* to 'iam_test'@'%';

You may want to restrict the set of hosts from which a mysql client can connect to the database with the above credentials according to your deployment needs.

MySQL8

For MySQL8 or more recent databases, we recommend to set a more modern unicode, e.g.

CREATE DATABASE iam_test_db CHARACTER SET latin1 COLLATE utf8;

Moreover, by migrating from a older db version to MySQL8, the connection to the database requires to set the allowPublicKeyRetrieval URL parameters, which is included by default since IAM v1.14.0 (see Database Configuration section).

Last modified May 8, 2026: Update description for MySQL8 (#211) (e1bad9b)