Skip to content

First Login

Default admin account

JustIAM does not seed a default admin account. On a fresh deployment the first user you create will need to be promoted to admin — the recommended approach is to create the initial user via the Terraform provider or the API from a script, then set is_admin = true.

Alternatively, connect directly to the PostgreSQL database and insert the first user manually:

INSERT INTO users (id, email, username, first_name, last_name, password_hash, is_active, is_admin)
VALUES (
  gen_random_uuid(),
  'admin@example.com',
  'admin',
  'Admin',
  'User',
  -- bcrypt hash of your chosen password (cost 12)
  '$2a$12$...',
  true,
  true
);

You can generate a bcrypt hash with:

htpasswd -bnBC 12 "" 'MyPassword123!' | tr -d ':\n'

Accessing the UI

Navigate to the URL set in OIDC_ISSUER (e.g. https://justiam.example.com). You will see the JustIAM login page.

Enter the email and password you configured for the admin account. If MFA is not yet enforced you will be logged in immediately.

Admin portal

Once logged in you have access to the full administration portal:

  • Dashboard — user / group / application counts
  • Users — create, update, disable, reset passwords
  • Groups — manage groups and membership
  • Applications — register OIDC and SAML applications
  • IDP Roles — define permissions for administrators
  • Sessions — view and revoke active SSO sessions
  • Settings — configure MFA policy, password rules, SMTP, branding, and more

My Apps

Non-admin users see the My Apps page after login, which lists all applications they have access to. This is the end-user portal.

Profile & MFA

Any user can manage their own profile, change their password, and enroll MFA from the Profile page (top-right menu → Profile).