Configure Docker Compose environments
Use this page to choose the Docker Compose file that matches your local setup, find component URLs, and review authentication defaults.
Choose a Docker Compose configuration
Camunda provides three Docker Compose configurations in the Camunda Distributions repository:
| Configuration file | Description |
|---|---|
docker-compose.yaml | Default lightweight configuration. Includes the Orchestration Cluster, Connectors, and Elasticsearch. Use this for most local development scenarios. |
docker-compose-full.yaml | Full configuration. Includes the Orchestration Cluster, Connectors, Optimize, Console, Management Identity, Keycloak, PostgreSQL, and Web Modeler. Use this when you need management components, process optimization, or browser-based modeling. |
docker-compose-web-modeler.yaml | Standalone Web Modeler configuration. Runs only Web Modeler and its dependencies. For deployment details, see deploy with Web Modeler. |
To start a specific configuration, run one of the following commands:
-
Default lightweight configuration:
docker compose up -d -
Full configuration:
docker compose -f docker-compose-full.yaml up -d -
Standalone Web Modeler:
docker compose -f docker-compose-web-modeler.yaml up -d
In these quickstart configurations, the Orchestration Cluster uses Elasticsearch as secondary storage by default. The PostgreSQL container in the full configuration is used by management components such as Management Identity and Web Modeler, not as Orchestration Cluster secondary storage.
If you want to run the Orchestration Cluster with RDBMS secondary storage, see configure secondary storage with Docker Compose.
Access components
Once the containers are running, you can access the components in your browser.
Use the following default credentials for web interfaces:
- Username:
demo - Password:
demo
Orchestration Cluster
The Orchestration Cluster is the core of Camunda 8 and provides process automation capabilities.
| Component | URL | Description |
|---|---|---|
| Operate | http://localhost:8080/operate | Monitor and troubleshoot process instances. See Introduction to Operate and Process instance creation. |
| Tasklist | http://localhost:8080/tasklist | Complete user tasks in running process instances. See User tasks. |
| Orchestration Cluster Admin | http://localhost:8080/admin | Manage users and permissions in the lightweight configuration. |
| Orchestration Cluster REST API | http://localhost:8080/v2 | REST API for process automation. |
| Orchestration Cluster gRPC API | localhost:26500 | gRPC API for high-performance process automation. |
Management and modeling components
The following components are available in the full configuration only:
| Component | URL | Description |
|---|---|---|
| Console | http://localhost:8087 | Manage clusters and component configurations. |
| Optimize | http://localhost:8083 | Analyze and improve process performance. |
| Management Identity | http://localhost:8084 | Manage users for Console, Optimize, and Web Modeler. |
| Web Modeler | http://localhost:8070 | Model BPMN processes, DMN decisions, and forms. |
External dependencies
| Component | Configuration | URL | Description |
|---|---|---|---|
| Elasticsearch | Lightweight and full | http://localhost:9200 | Used by the Orchestration Cluster as secondary storage, and by Optimize in the full configuration. |
| Keycloak | Full | http://localhost:18080/auth/ | OIDC provider for Management Identity. The lightweight configuration uses the embedded Orchestration Cluster Admin instead. Access Keycloak with admin / admin. |
| PostgreSQL | Full | localhost:5432 | Database for Management Identity and Web Modeler. In these quickstart configurations, the Orchestration Cluster continues to use Elasticsearch as secondary storage. |
Authentication
By default, the lightweight configuration uses Basic authentication for the Orchestration Cluster. The full configuration uses Keycloak for Management Identity authentication.
Lightweight configuration
- Web UI: Log in to Operate and Tasklist with
demo/demo. - APIs: REST and gRPC APIs are publicly accessible by default.
Full configuration
- Web UI: Log in to Operate, Tasklist, Console, Optimize, and Web Modeler with
demo/demo. - APIs: REST and gRPC APIs require OAuth with the following settings:
- Client ID:
orchestration - Client secret:
secret - OAuth URL:
http://localhost:18080/auth/realms/camunda-platform/protocol/openid-connect/token - Audience:
orchestration-api
- Client ID:
For details, see Orchestration Cluster REST API authentication.