Backup and restore operations

Access Gateway enables you to back up and restore configuration information.

Access Gateway admin nodes automatically back up configuration information each night. Using the Access Gateway Management console, administrators can perform the following tasks:

  • Rename or delete backup files that are located off-site, in the cloud, or in source-management systems.
  • Restore from a backup file to return a system's configuration to a previous state.
  • Initiate backup operations on local and remote computers.
  • Download backup files for use in other environments.
  • Move a configuration between environments by downloading a backup file, and then uploading and restoring it to another environment.
  • Move backup files to off-site or cloud storage.
  • Restore an admin node in a staging environment with a backup file from a development environment.

Backup operations

Backup files are used to restore a system to a prior system state, move a configuration between environments, and store configurations off-site. They're encrypted when you download them, but you must protect them with a password when you store them on another computer or storage location. Backups are performed automatically each night at 12:00 AM UTC-5. Each backup file is kept for 30 days, after which they're no longer available. If you need to run a backup outside of the nightly schedule, contact Okta Support.

Backup files contain the following information:

  • Identity Provider (IdP): The list of Identity Providers available to your org's users.
  • Application configurations: The configurations that you've created for access your environment's applications.
  • Custom configurations: Custom configurations that you've created for your environment.
  • Okta org (IdP): The configuration associated with your Okta org.
  • Data Stores: All auxiliary Data Store information.
  • Logging configuration: The logging configuration of your Okta org.

Restore operations

In Access Gateway, a restore operation returns an Access Gateway instance configuration to a specific state or point in time. You select a backup file and then the system onto which you want to restore that file. If you discover an issue with an environment after modifying a configuration, applying a patch, or other scenarios, you can restore the last known good configuration to that environment. You can also move or copy a known good configuration from one environment to another.

Backup and restore operations support high-availability clusters.