Security guidelines at some organizations prohibit the use of local server-level users, such as the igx user, and require alternatives for managing the console without local user accounts. And is there a non‑root / user‑level installation option for IGA Xpress?

The IGA Xpress installer is designed to perform several privileged operations that require root or sudo access during deployment. These operations include:

• Creating the service user (igx)
• Configuring install locations and systemctl for user-mode services
• Modifying /etc/hosts
• Allowing the load balancer to open protected ports (e.g., Port 443)

There is currently no non-root installation option for IGA Xpress. However, organizations can align with security guidelines regarding local users by using external authentication.

Use of External AD/LDAP Users

IGA Xpress supports the use of an external igx user via AD/LDAP integration. If the Linux machine is integrated with AD/LDAP for authentication:

1. Create the igx user within your AD/LDAP environment.
2. Integrate the Linux server with AD/LDAP.
3. Run the IGA xpress installer. It will detect and use the existing external AD/LDAP igx user instead of creating a local one.