About Access Gateway


Okta Access Gateway is a reverse proxy solution that is designed to secure web applications that do not natively support SAMLAn acronym for Security Assertion Markup Language, SAML is an XML-based standard for exchanging authentication and authorization data between an identity provider (IdP) and a service provider (SP). The SAML standard addresses issues unique to the single sign-on (SSO) solution, and defines three roles: the end user, the IdP, and the SP. Here's how SAML works through Okta: SP-initiated flow: the end user requests (principally through a browser) a service from the SP. The SP requests and obtains an identity assertion from the IdP (in this case, Okta). On the basis of this assertion, the SP can decide whether or not to authorize or authenticate the service for the end user. IdP-initiated flow: with Okta as the IdP, an end user goes to the Okta browser and clicks on an app, sending a SAMLResponse to the configured SP. A session is established with the SP, and the end user is authenticated. or OIDCOpenID Connect (OIDC) is an authentication layer on top of OAuth 2.0, an authorization framework. The standard is controlled by the OpenID Foundation.. Access Gatewayvintegrates with legacy applications through the use of HTTP Headers, and KerberosKerberos is a computer-network authentication protocol that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner. Tokens, and offers URL-based authorization and more. Access Gateway allows you to seamlessly integrate your legacy web based applications with Okta’s Cloud SSOAn acronym for single sign-on. In a SSO system, a user logs in once to the system and can access multiple systems without being prompted to sign in for each one. Okta is a cloud-based SSO platform that allows users to enter one name and password to access multiple applications. Users can access all of their web applications, both behind the firewall and in the cloud, with a single sign in. Okta provides a seamless experience across PCs, laptops, tablets, and smartphones. Capabilities.

Access Gateway is an ideal solution for any Okta customer where:

  • Your enterprise wants to unify all IAM under an Okta platform, but requires integration with web applications that do not support federation (SAML, WS-Fed).

  • Your vendors, customers, or partners must access your internal business web applications (such as SharePoint, Oracle E-Business Suite, and others) from the internet.

  • You must restrict unauthorized network access to your web applications.

  • Your enterprise has web applications that lack a native authentication mechanism.

  • Your company is looking for a cost-effective replacement for your on-premise Web Access Management (WAM) solution.

Installing the Access Gateway on your own virtualization platform, or on a cloud-based computing platform (such AWS, Google, Azure and others), is a simple process. Access Gateway is a high-performance appliance that is installed within your hosting solution of choice and leverages your DNS and networking to provide services.

Info

Note

Access Gateway focuses on Web (HTTP/HTTPS) based applications and does not support other protocols.

An Access Gateway deployment is typically composed of :

Access Gateway Component overview
Top