Enterprise Self-Hosted Implementation Checklist

☐ Choose self hosted deployment method (Linux standard/manual/offline, Windows standard/offline, or Kubernetes)

☐ Define server/VM specs and hosting environment (environment variables, firewall or proxy)

☐ Select database option (packaged MSSQL, separate MSSQL, Unified)

☐ Decide on SSL certificate approach

☐ Plan network architecture, firewall or proxy rules, access controls

☐ Scalability planning

☐ Certificate selection for secure data in-transit

☐ Project lead

☐ Identity provider admin

☐ Executive sponsor

☐ SMTP admin

☐ Server admin

☐ Security and compliance admin

☐ Docker admin

☐ Backups admin

☐ Network admin

☐ Business continuity admin

☐ Firewall admin

☐ Disaster recovery admin

☐ Support/help desk admin

☐ Device management admin

☐ Database admin

☐ Choose between SSO integration or Bitwarden authentication

☐ Select provisioning method (SCIM, Directory Connector)

☐ Define backup strategy (frequency, retention)

☐ Identify regulatory compliance needs (HIPAA, SOC2)

☐ Plan user roles, permissions, and organizational structure

☐ Provision servers/VMs meeting min specs

☐ Configure Windows-specific requirements

☐ Install Docker, Docker compose

☐ Configure database system

☐ Test database connectivity strings and authentication

☐ Implement database security best practices

☐ Obtain installation ID and key from Bitwarden hosting portal

☐ Create dedicated Bitwarden system user and directory structure

☐ Configure SSL certificates and HTTPS encryption

☐ Implement backup schedules for server and database

☐ Configure off-site backup and retention policies

☐ Test backup integrity and restoration procedures

☐ Document backup and recovery processes

☐ Set up monitoring and alerting for backup failures

☐ Evaluate backup methods

☐ Create disaster recovery runbooks

☐ Enable SCIM provisioning in admin console

☐ Obtain SCIM URL and API key from Bitwarden

☐ Configure identity provider

☐ Map user attributes and group memberships

☐ Test SCIM synchronization

☐ Download and install directory connector

☐ Configure server URL and authentication

☐ Set up directory source connection

☐ Configure sync filters, user/group mappings

☐ Complete final security review and sign off from stakeholders

☐ Set up production monitoring and alerting systems

☐ Coordinate with network and security teams for go-live

☐ Monitor system performance and adoption metrics

☐ Conduct post-implementation review with stakeholders

☐ Plan ongoing maintenance and update procedures

☐ Document lessons learned and process improvements

☐ Schedule regular security audits and policy reviews

☐ Develop communication plan for organization

☐ Create timeline for rollout announcements and milestones

☐ Prepare exec updates on security benefits and ROI

☐ Schedule admin and end-user training

☐ Plan ongoing communication and feedback channels

☐ Set up support processes and escalation procedures