BASH script to install BigBlueButton in 30 minutes.
The developer of this repository has not created any items for sale yet. Need a bug fixed? Help with integration? A different license? Create a request here:
To help you setup a BigBlueButton server,
bbb-install.shis a shell script that automates the step-by-step instructions for installing and conifuring up a BigBlueButton 2.2 server. In many cases,
bbb-install.shcan fully install and configure your BigBlueButton server ready for use in 30 under minutes (depending on your server's internet speed to download and install packages).
For example, to install the latest build of BigBlueButton 2.2 on an new Ubuntu 16.04 64-bit server with a public IP address, hostname (such as
bbb.example.com) that resolves to the public IP address, and an e-mail address (such as
wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -w -a -v xenial-22 -s bbb.example.com -e [email protected]
This command pulls down the latest version of
bbb-install.sh, sends it to the BASH shell interpreter, and installs BigBlueButton using the parameters provided:
-winstalls the uncomplicated firewall (UFW) to restrict access to TCP/IP ports 22, 80, and 443, and UDP ports in range 16384-32768,
-ainstalls the API demos (this makes it easy to do a few quick tests on the server),
-v xenial-22installs the latest build of BigBlueButton 2.2.x,
-ssets the server's hostname to be
-eprovides an e-mail address for Let's Encrtyp to generate a valid SSL certificate for the host.
Note: If your server is also behind an external firewall -- such as behind a corporate firewall or behind an AWS Security Group -- you will need to manually configure the external firewall to forward specific internet connections to the BigBlueButton server before you can launch the client.
When the above command finishes, you'll see a message that gives you a test URL to launch the BigBlueButton client and join a meeting called 'Demo Meeting'.
# Warning: The API demos are installed and accessible from: # # http://bbb.example.com # # and # # http://bbb.example.com/demo/demo1.jsp # # These API demos allow anyone to access your server without authentication # to create/manage meetings and recordings. They are for testing purposes only. # If you are running a production system, remove them by running: # # sudo apt-get purge bbb-demo
Open the URL in either Chrome or FireFox (recommended browsers). You should see a login to join the meeting
Enter your name and click Join. The BigBlueButton client should then load in your browser and prompt you to join the audio.
Only when web pages are servied via HTTPS will the browser allow access to your webcam, microphone, or screen (for screen sharing) using the browser's built-in real-time communications (WebRTC) libraries. If you try to install BigBlueButton without specifying the
-eparameters, the client will not load.
bbb.example.comand e-mail address
bbb-install.shto setup/upgrade your BigBluebutton server.
bbb-install.sh, you needed to
bbb.example.com, that resolves to the external IP address of your server.
To set up a FQDN, you need to purchase a domain name from a domain name system (DNS) provider, such as GoDaddy or Network Solutions. Once purchased, you'll need to use steps provided by the DNS provider to create an
A Recordfor your FQDN that resolves to the public IP address of your server. (Check the DNS provider's documentation for details on how to set up the
With a FQDN domain name place, you can then pass a few additional parameters to
bbb-install.shto have it:
If you install Greenlight, you'll have the ability to be the Greenlight administrator, giving you the ability manage user accounts.
The full source code for
bbb-install.shis here. To make it easy for anyone to run the script with a single command, we host the latest version of the script at https://ubuntu.bigbluebutton.org/bbb-install.sh.
There are many hosting companies that can provide you with dedicated virtual and bare-metal servers to run BigBlueButton. We list a few popular choices below (we are not making any recommendations here, just listing some of the more popular choices).
Other popular choices, such as ScaleWay (choose either Bare Metal or Pro servers) and Google Compute Engine, offer servers that are set up behind network address translation (NAT). That is, they have both an internal and external IP address. When installing on these servers, the
bbb-install.shwill detect the internal/external addresses and configure BigBlueButton accordingly.
Another popular choice is Amazon Elastic Compute Cloud. We recommend a
c5a.2xlarge(or larger) instance. All EC2 servers are, by default, is behind a firewall (which Amazon calls a
security group). You will need to manually configure the security group before installing BigBlueButton on EC2 and, in a similar manner, on Azure and Google Compute Engine (GCE). (See screen shots in next section.)
bbb-install.shis unable to configure your server behind NAT, we recommend going through the step-by-step for installing BigBlueButton (going through the steps is also a good way to understand more about how BigBlueButton works).
If you install BigBlueButton on a server behind a external firewall, such an Amazon's EC2 security group, you first need to configure the external firewall to forward incoming traffic on the following ports:
If you are using EC2, you should also assign the server an Elastic IP address to prevent it from getting a new IP address on reboot.
On Microsot Azure, when you create an instance you need to add the following inbound port rules to enable incoming connections on ports 80, 443, and UDP port range 16384-32768:
On Google Compute Engine, when you create an instance you need to enable traffic on port 80 and 443.
After the instance is created, you need to add a firewall rule to allow incoming UDP traffic on the port range 16384-32768.
We make a disction here between the firewall installed with
-wand the external firewall on a separate server. Even with an external firewall, its good practice to still install the UFW firewall on the BigBlueButton server.
Using Digital Ocean as an example, we put together this video to get you going quickly: Using bbb-install.sh to set up BigBlueButton on Digital Ocean.
Using Amazon EC2, see Install using bbb-install.sh on EC2.
You can get help by passing the
Script for installing a BigBlueButton 2.2 (or later) server in about 30 minutes.
This script also supports installation of a coturn (TURN) server on a separate server.
USAGE: wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- [OPTIONS]
OPTIONS (install BigBlueButton):
-v Install given version of BigBlueButton (e.g. 'xenial-22') (required)
-s Configure server with -e Email for Let's Encrypt certbot
-x Use Let's Encrypt certbot with manual dns challenges
-a Install BBB API demos -g Install Greenlight -c : Configure with coturn server at using
-m Create a Symbolic link from /var/bigbluebutton to
-p Use apt-get proxy at -r Use alternative apt repository (such as packages-eu.bigbluebutton.org)
-d Skip SSL certificates request (use provided certificates from mounted volume) -w Install UFW firewall
-h Print help
OPTIONS (install coturn only):
-c : Setup a coturn server with and (required) -e Configure email for Let's Encrypt certbot (required)
OPTIONS (install Let's Encrypt certificate only):
-s Configure server with (required) -e Configure email for Let's Encrypt certbot (required) -l Install Let's Encrypt certificate (required) -x Use Let's Encrypt certbot with manual dns challenges (optional)
Sample options for setup a BigBlueButton server
-v xenial-22 -v xenial-22 -s bbb.example.com -e [email protected] -w -v xenial-22 -s bbb.example.com -e [email protected] -w -g -v xenial-22 -s bbb.example.com -e [email protected] -w -g -c turn.example.com:1234324
Sample options for setup of a coturn server (on a different server)
-c turn.example.com:1234324 -e [email protected]
bbb-install.shcan install a SSL/TLS certificate, you will need to provide two pieces of information: * A fully qualified domain name (FQDN), such as
bbb.example.com, that resolves to the public IP address of your server * An e-mail address
When you have set up the FQDN, check that it correctly resolves to the external IP address of the server using the
dig bbb.example.com @18.104.22.168
Note: we're using
bbb.example.comas an example hostname and
With just these two pieces of information -- FQDN and e-mail address -- you can use
bbb-install.shto automate the configuration of the BigBlueButton server with a TLS/SSL certificate. For example, to install BigBlueButton 2.2 with a TLS/SSL certificate from Let's Encrypt using
wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -v xenial-22 -s bbb.example.com -e [email protected] -w
bbb-install.shscript will also install a cron job that automatically renews the Let's Encrypt certificate so it doesn't expire. Cool.
The default installation is meant to be for servers that are publicly available. This is because Let's Encrypt requires to access nginx in order to automatically validate the FQDN provided.
When installing BigBlueButton in a private network, it is possible to validate the FQDN manually, by adding the option
-xto the command line. As in:
wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -v xenial-22 -s bbb.example.com -e [email protected] -w -x
Confirm the use of the email account.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Would you be willing to share your email address with the Electronic Frontier Foundation, a founding partner of the Let's Encrypt project and the non-profit organization that develops Certbot? We'd like to send you email about our work encrypting the web, EFF news, campaigns, and ways to support digital freedom. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - (Y)es/(N)o:
Confirm the use of the IP address ``` Are you OK with your IP being logged?
A challenge will be generated and shown in the console.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Please deploy a DNS TXT record under the name _acme-challenge.bbb.example.com with the following value:
Before continuing, verify the record is deployed.
Press Enter to Continue
Before hitting Eneter, create a TXT record in the DNS with the challenge that was generated.
_acme-challenge.bbb.example.com. TXT "0bIA-3-RqbRo2EfbYTkuKk7xq2mzszUgVlr6l1OWjW8" 60
The downside of this is that because Let's Encrypt SSL certificates expire after 90 days, it will be necessary to manually update the certificates. In that case an email is sent a few days before the expiration and the next command has to be executed through the console.
certbot --email [email protected] --agree-tos -d bbb.example.com --deploy-hook 'systemctl restart nginx' --no-bootstrap --manual-public-ip-logging-ok --manual --preferred-challenges dns --server https://acme-v02.api.letsencrypt.org/directory certonly
You can install the API demos by adding the
wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -v xenial-22 -s bbb.example.com -e [email protected] -w -a
Warning: These API demos allow anyone to access your server without authentication to create/manage meetings and recordings. They are for testing purposes only. Once you are finished testing, you can remove the API demos with
sudo apt-get purge bbb-demo.
Greenlight is a simple front-end for BigBlueButton written in Ruby on Rails. It lets users create accounts, have permanent rooms, and manage their recordings. It also lets you, as the administrator, manage the user accounts (such as approve or deny users).
You can install Greenlight by adding the
wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -v xenial-22 -s bbb.example.com -e [email protected] -w -g
Once Greenlight is installed, it redirects the default home page to Greenlight. You can also configure GreenLight to use OAuth2 authentication.
To launch Greenlight, simply open the URL of your server, such as
https://bbb.example.com/. You should see the Greenlight landing page.
To set up an administrator account for Greenlight (so you can approve/deny signups), enter the following commands
cd greenlight/ docker exec greenlight-v2 bundle exec rake admin:create
This command will create an admin account and set a default password. After running this command, login using the given username/password and change the default password. Next, select 'Administrator' and choose 'Organization'.
You can then select 'Site Settings' on the left-hand side and change the Registration Method to 'Approve/Decline'.
You can now contol who creates accounts on your BigBlueButton server. For more information see Greenlight administration.
The install script allows you to pass a path which will be used to create a symbolic link with /var/bigbluebutton
wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -v xenial-22 -w -m /mnt/test
This allows users to store the contents of /var/bigbluebutton, which can get quite large in a seperate volume
If you want to set up BigBlueButton 2.2 with a TLS/SSL certificate and GreenLight, you can do this all with a single command:
wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -v xenial-22 -s bbb.example.com -e [email protected] -w -g
Furthermore, you can re-run the same command later to update your server to the latest version of BigBlueButton 2.2. We announce updates to BigBlueButton to the bigbluebutton-dev mailing list.
You can use
bbb-install.shto automate the steps to set up a TURN server for BigBlueButton.
BigBlueButton normally requires a wide range of UDP ports to be available for WebRTC communication. In some network restricted sites or development environments, such as those behind NAT or a firewall that restricts outgoing UDP connections, users may be unable to make outgoing UDP connections to your BigBlueButton server.
The TURN protocol is designed to allow UDP-based communication flows like WebRTC to bypass NAT or firewalls by having the client connect to the TURN server, and then have the TURN server connect to the destination on their behalf.
You need a separate server (not the BigBlueButton server) to set up as a TURN server. Specifically you need:
On the TURN server, you need to have the following ports (in additon port 22) availalbe for BigBlueButton to connect (port 3478 and 443) and for the coturn to connect to your BigBlueButton server (49152 - 65535).
| Ports | Protocol | Description | | ------------- | ------------- | ----------- | | 3478 | TCP/UDP | coturn listening port | | 443 | TCP/UDP | TLS listening port | | 49152-65535 | UDP | relay ports range |
We recommend Ubuntu 18.04 as it has a later version of coturn than Ubuntu 16.04. Also, this TURN server does not need to be very powerful as it will only relay communications from the BigBlueButton client to the BigBlueButton server when necessary. A dual core server on Digital Ocean, for example, which offers servers with public IP addresses, is a good choice.
Next, to configure the TURN server you need:
With the above information, you can set up a TURN server for BigBlueButton using
wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -c : -e
Note, we've omitted the
-voption, which causes
bbb-install.shto just install and configure coturn. For example, using
turn.example.comas the FQDN,
1234abcdas the shared secret, and
wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -c turn.example.com:1234abcd -e [email protected]
bbb-install.shuses Let's Encrypt to configure coturn to use a SSL certificate. With a SSL certificate in place, coturn can relay access to your BigBlueButton server via TCP/IP on port 443. This means if a user is behind a restrictive firewall that blocks all outgoing UDP connections, the TURN server can accept connections from the user via TCP/IP on port 443 and relay the data to your BigBlueButton server via UDP.
With the TURN server in place, you can configure your BigBlueButton server to use the TURN server by running the
bbb-install.shcommand again and adding the same
-c :. For example,
wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -v xenial-22 -s bbb.example.com -e [email protected] -g -c turn.example.com:1234abcd
You can re-use a single TURN server for multiple BigBlueButton installations.
If you intend to use this server for production you should uninstall the API demos using the command
apt-get purge bbb-demo
You can also do a number of customizations to your server as well.
We are currently hosting the packaging on a Digital Ocean servlet, but recently the IP range for some Digital Ocean servers has been blocked in some countries.
If you're having troubles installing, try running the
bbb-install.shcommand but change the value
If on first install Greenlight gives you a
500 errorwhen accessing it, you can restart Greenlight.
If on the initial install you see
# Not running: tomcat7 or grails LibreOffice
sudo bbb-conf --checkagain. Tomcat7 may take a bit longer to start up and isn't running the first time you run
sudo bbb-conf --check.
If you have feedback on the script, or need help using it, please post to the BigBlueButton Setup mailing list with details of the issue (and include related information such as steps to reproduce the error).
If you encounter an error with the script (such as it not completing or throwing an error), please open GitHub issue and provide steps to reproduce the issue.
If you are running your BigBlueButton behind a firewall, such as on EC2, this script will not configure your firewall. You'll need to configure the firewall manually.