Deployment Manual5 min readReviewed 2026-05-15

Installation Readiness

Installation readiness confirms that the customer environment, deployment package, security approvals, and operational owners are prepared before DeskDox is installed.

Readiness Principle

DeskDox installation should not begin until the infrastructure owner, network owner, security owner, application administrator, and deployment engineer have confirmed the target deployment model and the required access window. This reduces installation delay caused by missing DNS, firewall, storage, certificate, SMTP, license, or backup information.

Pre-Install Checklist

AreaRequired confirmation
Deployment modelLinux Docker Compose, Windows offline installer, VPS/private cloud, or reviewed customer-specific model selected.
Host accessAdministrative access available for the deployment engineer during the planned window.
Docker runtimeDocker Engine/Compose or Windows deploy-kit prerequisites available and tested.
StorageDurable storage provisioned for database, uploads, previews, index data, backups, logs, and temporary processing.
DNSFQDN selected and DNS administration available.
TLSCertificate approach confirmed; certificate and private key handling defined where customer-managed.
FirewallInbound and outbound firewall decisions completed.
SecretsProduction secrets generated or secure generation procedure defined.
SMTPSMTP relay details and test recipient available if email features are in scope.
IntegrationsWhatsApp, OpenAI/Emii, Azure/OpenAI, Ollama, or other integration keys available if enabled.
BackupBackup path, retention, off-host copy, restore owner, and restore validation approach defined.
LicenseDeskDox license key or activation process available.
Admin ownerNamed customer administrator available for validation and handover.

Customer Information Required

InformationRequired forNotes
FQDNPublic endpoint, email links, public links, callbacksMust match the production URL used in configuration.
TLS certificateHTTPS accessCertificate chain and renewal process are customer responsibilities unless separately managed.
SMTP host, port, sender, username, password or tokenNotifications, password reset, document emailCredentials must be handled as secrets.
Backup locationBackup and restore readinessPrefer storage outside the primary application data path.
Admin contactInitial validation and escalationMust be available during installation and post-install validation.
License key or activation detailsProduct activationOnline activation settings are environment-specific.
Integration keysWhatsApp, OpenAI/Emii, Azure, or external APIsOnly required if the feature is enabled.
DNS accessPublic endpoint setupRequired for go-live unless preconfigured.
Firewall decisionsInbound and outbound communicationMust include public endpoint, SMTP, WhatsApp/API, and AI endpoints where applicable.

Deployment Package Readiness

For Linux compose deployments, confirm:

  • docker-compose.prod.yml is available.
  • .env.prod has been created from .env.prod.template.
  • Image tag policy is agreed through IMAGE_TAG.
  • Persistent host paths under /srv/edms/volumes/... or approved equivalents are provisioned.
  • Reverse proxy/TLS approach is defined if HTTPS is terminated outside the DeskDox frontend container.

For Windows offline installer deployments, confirm:

  • The deploy-kit package is complete.
  • deploy-kit/config/.env has been reviewed before first install.
  • Offline image archives are available if the environment cannot pull from a registry.
  • PowerShell execution policy and administrator access allow the deploy-kit scripts to run.
  • The Windows service model and Docker runtime support boundary are accepted by the customer.

Image and Tag Readiness

Production deployments should use a deliberate image tag rather than an uncontrolled moving target. The deploy-kit template currently defines IMAGE_TAG=v1.0.56; the root production template uses IMAGE_TAG=latest as a placeholder to be pinned for the target release. The implementation team should confirm the release tag selected for the customer deployment and record it in the handover notes.

Offline Installer Readiness

Offline Windows deployment requires the deployment package to include all container images and scripts needed by the target host. The deployment engineer should validate that image archives load successfully before the installation window where possible. Internet access assumptions must be documented because offline environments may block activation, SMTP, WhatsApp, OpenAI/Emii, and update flows unless explicit allow-lists are approved.

Post-Install Validation Checklist

Validation areaExpected result
LoginProduction admin can log in through the approved URL.
User accessAt least one non-admin user can authenticate and access only permitted areas.
UploadA test document uploads successfully and appears in the correct folder.
PreviewPDF and Office preview behavior is validated for representative file types.
OCR/searchSearch returns expected results after index processing; scanned-document OCR is tested if in scope.
WorkflowA representative workflow can be started, actioned, and completed.
EmailSMTP test and at least one real notification or document email are delivered if email is in scope.
BackupInitial backup completes and backup artifacts are visible in the configured location.
Restore reviewRestore procedure is tested in a non-production environment or a deferred validation plan is recorded in handover notes.
Public URLEmail links, public document links, and frontend URL behavior use the production FQDN.
Audit logsLogin, upload, admin, and document events are visible in audit/history views where applicable.

Readiness Output

The readiness workshop should produce deployment handover notes containing:

  • Target deployment model.
  • Host, storage, DNS, TLS, and firewall decisions.
  • Environment variables requiring customer-supplied values.
  • Backup/restore expectations and RPO/RTO.
  • Named operational owners.
  • Support boundaries.
  • Open items marked To be confirmed with owner and target date.

Was this article helpful?

Related articles

Continue with closely related deployment manual guidance.