$> curl -sL -o requirements-check.sh https://raw.githubusercontent.com/labforward/installation/main/requirements-check.sh
$> sudo bash ./requirements-check.sh

Fill out this Questionnaire to obtain the installation package.

It is recommended to use a fresh VM for the platform installation. If the VM is already used for other applications or has a previous version of any Labforward product, then:

• Make sure ports 80 and 443 are available
• Uninstall docker. The installation script will try to do it for you, but it is safer if you remove it manually before starting the process
• In the /etc/resolv.conf file:
  
  It can have at most three nameservers
  
  Each nameserver can have at most three search queries, and one of them must be your DNS domain

sudo apt-get upgrade

$> curl -o installation-script.sh -sL https://use.the.url.from.the.email

$> sudo bash installation-script.sh
Downloading labforward-installer-package bundle
Type the pasword provided for installation:

$> sudo kubectl get pods

$> curl ifconfig.me # This command will tell what is this machine public IP. We will call it {{my-public-ip}} in the following sections

$> sudo kubectl kots reset-password

Application Configuration

After logging into the Admin Console, proceed with the minimum required configuration fields:

Domain: Include the DNS domain pointing out to the machine IP running the Kubernetes cluster in the Domain field

TLS Certificate Configuration:

(Option 1): Customer Provided - Include your company’s TLS certificate

(Option 2): Use Let’s Encrypt - Labforward will use the Let’s Encrypt certificate

(Option 3): Self-Signed - Labforward will create and use a self-signed certificate

Email Server - SMTP:

• SMTP Hostname
• SMTP From Email - E-mail used to send Labforward e-mails, such as reset password

Click on the Continue button at the bottom of the page:

Click on the Deploy button on the pre-flights page

*Checkmarks and warnings are acceptable, but errors will block the deployment.

Checkpoint 3

Open the Account login page in the browser at https://account.{{domain}}

What you accomplished so far:

• Labforward’s applications are ready for use
• The next releases and configurations will be available via the admin console - https://admin-console.{{domain}}
• All data is being stored in embedded data sources deployed inside Kubernetes
• Self-sign-up is available using the e-mail provided in the configurations to create new accounts

What’s next:

The following steps are optional and depend on each customer's needs:

• Configure other authentication mechanisms such as LDAP and SSO 
• Migrate the data of a previous Labforwad’s installation
• Connect the applications to an external data source

• Select the External option and insert the URL (the query parameters are optional, Labforward recommends keeping the same as before), username, and password
• At the bottom of the screen, click on Save Config
• Go back to the dashboard and deploy the new version.

It is normal for databases to restrict access via IP. If the database was running in the same VM as the application, it has a chance to permit connections only from localhost.

The DBA must grant permission to the Kubernetes cluster IP to permit access from the Kubernetes cluster.

For example, in the MySQL database, execute the following query for labfolder:

grant all privileges on labfolder.* to 'labfolder'@'{{IP}}' identified by 'password' with grant option;