Jenkins Initial Setup
This guide walks through the first-time Jenkins setup after installation. Correct initial setup is critical for security, stability, and maintainability.
Unlock Jenkinsβ
When Jenkins starts for the first time, it is locked.
Retrieve Initial Admin Passwordβ
Local / Linux / macOSβ
cat /var/lib/jenkins/secrets/initialAdminPassword
Dockerβ
docker exec jenkins cat /var/jenkins_home/secrets/initialAdminPassword
Paste the password into the Jenkins UI to continue.
Plugin Installation Strategyβ
Install Suggested Plugins?β
- β Not recommended for production
- Installs many unused plugins
Recommended Approachβ
- Install minimal required plugins
- Add plugins only when needed
Core plugins usually required:
- Git
- Pipeline
- Credentials Binding
- SSH Agent
- Workspace Cleanup
Create Admin Userβ
- Create a dedicated admin user
- Do not continue using the initial admin password
- Use a strong password
Configure Jenkins URLβ
Set:
Manage Jenkins β Configure System β Jenkins URL
This is required for:
- Webhooks
- Email notifications
- External integrations
Global Security Settingsβ
Authenticationβ
- Jenkins internal user database (for learning)
- LDAP / SSO (enterprise)
Authorizationβ
- Matrix-based security (recommended)
- Avoid βAnyone can do anythingβ
Disable Controller Executors (Important)β
Manage Jenkins β Nodes β Built-in Node β Executors β 0
Prevents builds from running on controller.
Basic Hardening Checklistβ
- Disable anonymous access
- Enable CSRF protection
- Limit admin users
- Regularly update plugins
- Backup JENKINS_HOME
Verify Setupβ
Confirm:
- Jenkins dashboard loads
- Admin user login works
- No warnings in system logs
Common Mistakesβ
- Too many plugins installed initially
- Leaving controller executors enabled
- Weak admin passwords