Sample cookie application

The purpose of this tutorial is to walk through the process of setting up a sample cookie application through the Access Gateway Admin Console.

Before you begin

  • Access Gateway is installed and configured for use.
    See Manage Access Gateway deployment.
  • Access Gateway has been configured to use your Okta tenant as IDP.
    See Configure your Okta tenant as Identity Provider for more information about configuring your Okta tenant as an IDP.
  • You have administrator rights on your Okta tenant and can assign applications to users, and create groups.
  • Appropriate DNS entries exist for the application.

Create sample cookie application

  1. Navigate to your Access Gateway Instance and sign in as admin.
  2. Click the Applications tab
    .Select applications tab
  3. Click + Add to add a new application.
    Click Add.
  4. Select the Access Gateway Sample Cookie option from the left column menu, and click Create.

    Select add and the clicke Sample Cookie App.

    The New Protected Application wizard will start and display the Setting tab for the application being added.

  5. In the Essentials pane specify the following:

    Field Value
    Label A name for the application. Default is Sample Cookie App.
    Public Domain A fully qualified host name such as cookie.<your domain tld>
    Group Enter the group containing the users who should have access to the application.
    Description [optional] An appropriate description for your application.
  6. Click Done.
    Access Gateway will add the new application and then redirect to the Applications tab.


  1. Select IDP Initiated from the drop down menu to verify the application is working.

    Test a sample cookie application



    Your Okta tenant administrator may need to assign the cookie application to you.

  2. In the application page, review and verify that the Sample Cookie App sent to Okta matches your profile information.
    Example cookie information


Access Gateway inserts the cookie header into the request before it is sent to the back-end web application.

See Also