About this document

CiviCRM tries to follow Drupal community's decisions around which versions of Drupal receive support.

The current supported versions are Drupal 10 and Drupal 11.

This guide covers installation of CiviCRM on Drupal 10, though the steps for Drupal 11 should be similar.

Before starting, you must have completed these tasks:

1. Installed Drupal and...
2. Reviewed the CiviCRM requirements

Drupal 7 is now officially End of Life and is not recommended for new sites. Instructions for installing CiviCRM on Drupal 7 have been moved to an Appendix.

Get the code for Drupal 10

Drupal 10 sites are typically administered with Composer. Composer is a dependency management tool which can add, upgrade and remove software packages for your site.

If composer is properly installed, then these example commands will add latest CiviCRM version to D10:

cd /var/www/d10.example.org
composer config extra.enable-patching true
composer require civicrm/civicrm-{core,packages,drupal-8}
composer require civicrm/cli-tools

More detail: Enable patching

A handful of packages used by CiviCRM require extra patch-files.

This is possible with the popular cweagans/composer-patches plugin. However, you must opt-in to enable it.

Install CiviCRM without any translations

To install CiviCRM without any translations we use the command line tool cv and we assume you already have an empty database.

Change the following in the command below:

• https://d10.example.org change this to your civicrm url
• database_user change this to your database user
• database_pass change this to the password of your database user
• civicrm_database change this to name of your civicrm database

cv core:install --cms-base-url="https://d10.example.org" --db="mysql://database_user:database_pass@localhost:3306/civicrm_database"

Install a translated CiviCRM

To install a translated CiviCRM on Drupal 10 requires an additional step to download the translation files.

Change the following in the command below:

• nl_NL to your language, e.g. fr_FR, or nl_BE etc...
• https://d10.example.org change this to your civicrm url
• database_user change this to your database user
• database_pass change this to the password of your database user
• civicrm_database change this to name of your civicrm database

mkdir -p web/sites/default/files/civicrm/l10n/nl_NL/LC_MESSAGES
curl -Lss -o web/sites/default/files/civicrm/l10n/nl_NL/LC_MESSAGES/civicrm.mo https://download.civicrm.org/civicrm-l10n-core/mo/nl_NL/civicrm.mo
export CIVICRM_L10N_BASEDIR=/var/www/d10.example.org/web/sites/default/files/civicrm/l10n
cv core:install --cms-base-url="https://d10.example.org" --db="mysql://database_user:database_pass@localhost:3306/civicrm_database" --lang="nl_NL"

Troubleshooting

• Review the Troubleshooting page for help with problems you may encounter during the installation.

Post-installation

Recommended steps to perform after installing CiviCRM on Drupal.

Review the permissions

Drupal will create the /files/ directory (and make it writeable), but only when saving admin/settings. Same holds for /temp directory, and a /uploads/ directory in the CiviCRM module root. On a brand-new Drupal install, this directory may be missing. Even on an existing installation, if file permissions are not set properly, the directory may be missing. If enabling the CiviCRM module generates errors regarding the files directory, you must create it (writeable) manually.

• Go to the CiviCRM dashboard to see the CiviCRM menus: https://example.org/civicrm (or https://example.org/index.php?q=civicrm if you don't have Clean URLs enabled)

• Go to Administer » User management » Permissions

• Verify that the Roles that you want to have access to CiviCRM have the appropriate permissions checked. CiviCRM is installed with a number of fixed permissions (such as "edit contacts" and "administer CiviCRM").

Permissions for the Anonymous Role

Many sites want anonymous visitors to have access to certain CiviCRM functionality. These permissions are enabled during installation for the Anonymous role. You should review them and modify if needed based on your requirements:

• access all custom data : If you plan on collecting "custom" data from visitors in standalone forms or as they make a contribution - enable this permission.
• access CiviMail subscribe/unsubscribe pages : If you are planning on using CiviMail, enable this permission to allow anonymous users to subscribe and unsubscribe from mailing lists via the web.
• access uploaded files : If you plan on allowing visitors to upload or view photos or other files - enable this permission.
• make online contributions : If you plan on soliciting online contributions from visitors, enable this permission for the "anonymous" role.
• profile listings and forms : If you plan on collecting name and address or other information from visitors, enable this permission for the "anonymous" role.
• view event info and register for events : If you plan to use CiviEvent and want to allow un-authenticated visitors to view event information and register for events online - enable these permissions for the "anonymous" role.
• view event participants : Enable this permission to allow anonymous users to access participant listing pages for events.

Synchronize the users

Once installed, CiviCRM keeps your Drupal Users synchronized with corresponding CiviCRM contact records. The 'rule' is that there will be a matched contact record for each Drupal user record. Conversely, only contacts who are authenticated users of your site will have corresponding Drupal user records.

When CiviCRM is installed on top of an existing Drupal site, a special CiviCRM Administrative feature allows you to automatically create CiviCRM contacts for all existing Drupal users:

• Login to your Drupal site with an administrator-level login
• Click the CiviCRM link in the main navigation block
• If your Drupal site makes use of the db_prefix setting (in settings.php), in the top bar click Administer » System Settings » CMS Database Integration , and update the box for the Drupal Users Table Name so that it includes the prefix.
• Click Administer in the menu bar
• Click Users and Permissions from the drop-down menu, then select Synchronize Users to Contacts

Review the checklist

The Configuration Checklist provides a convenient way to work through the settings that need to be reviewed and configured for a new site. You can link to this checklist from the installation success page and you can visit it at any time from Administer » Administration Console » Configuration Checklist.

Test-drive CiviCRM

There should now be a CiviCRM link in your Drupal menu. Click that link and the CiviCRM Menu, Shortcuts, Search and New Individual Blocks should appear. You can now explore CiviCRM end-user features and begin configuring CiviCRM for your site/organization needs.

Addenda

TLS for MySQL

If your MySQL database is hosted on a different machine than your web server, or if your host requires it, you can use TLS to encrypt the connection between the database and the web server.

Full instructions on installing drupal are out of scope for this guide, but one method is to install into a test database first without MySQL encryption and then move the database to the live server and update settings.php to enable MySQL encryption.

See TLS for MySQL for introductory concepts and the settings for the CiviCRM database. For the Drupal database you have several options for updating settings.php:

1. The simplest, which doesn't require a client certificate, but doesn't verify the server certificate.

   $databases = array (
     'default' =>
     array (
       'default' =>
       array (
         'database' => 'drupal',
         'username' => 'dbuser',
         'password' => 'dbpassword',
         'host' => 'db435.examplehost.com',
         'port' => '',
         'driver' => 'mysql',
         'prefix' => '',
         'pdo' => array(
             PDO::MYSQL_ATTR_SSL_CA => TRUE,
             PDO::MYSQL_ATTR_SSL_VERIFY_SERVER_CERT => FALSE,
         ),
       ),
     ),
   );
   

2. Verifies the server certificate, and doesn't require a client certificate.

   Host name must match certificate name

   Note that the DATABASE SERVER certificate would have to have a CN (common name field) that matches exactly the host you are using in $databases['default']['default']['host']. So if the host is db435.examplehost.com, then that must be the name on the SERVER certificate.

   'pdo' => array(
       // A certificate authority bundle.
       // If you are using a self-signed server certificate in a development
       // or testing environment, then this would be the same as the server
       // certificate.
       PDO::MYSQL_ATTR_SSL_CA => '/path/to/ca.crt',
   ),
   

3. Client certificate/key pair (not self-signed), and do not verify the server certificate.

   'pdo' => array(
       PDO::MYSQL_ATTR_SSL_VERIFY_SERVER_CERT => FALSE,
       PDO::MYSQL_ATTR_SSL_KEY => '/path/to/your.key',
       PDO::MYSQL_ATTR_SSL_CERT => '/path/to/your.crt',
   ),
   

4. Client certificate/key pair (could be self-signed), and verify the server certificate.

   'pdo' => array(
       // The SSL_CA can be the same as your.crt if self-signed, but note
       // that it would also have to be a certificate authority for the
       // server certificate. Self-signed would only be for local
       // development testing.
       PDO::MYSQL_ATTR_SSL_CA => '/path/to/ca.crt',
       PDO::MYSQL_ATTR_SSL_KEY => '/path/to/your.key',
       PDO::MYSQL_ATTR_SSL_CERT => '/path/to/your.crt',
   ),
   

Integration modules

Webform CiviCRM module

• Webform project page on drupal.org
• Webform documentation on civicrm.org

CiviCRM Entity module

• Project page on Drupal.org