Add a Sample Header Application
The purpose of this tutorial is to walk through the process of setting up a sample header application through the Access Gateway AdminAn abbreviation of administrator. This is the individual(s) who have access to the Okta Administrator Dashboard. They control the provisioning and deprovisioning of end users, the assigning of apps, the resetting of passwords, and the overall end user experience. Only administrators have the Administration button on the upper right side of the My Applications page. Console.
Access Gateway is configured for use your Okta tenant. See here for more information about configuring your Okta tenant as an idPAn acronym for Identity Provider. It is a service that manages end user accounts analogous to user directories such as LDAP and Active Directory, and can send SAML responses to SPs to authenticate end users. Within this scenario, the IdP is Okta..
You have administrator rights on your Okta tenant and can assign applications to users
Appropriate DNS entries for the application.
Create the Application in Access Gateway
Navigate to your selected https://gw-admin.gateway.info page to access the Access Gateway InstanceAn instance, or computer instance, is a virtual machine (VM) or individual physical computer, used to host a software appliance..
Access Gateway creates a default self-signed certificate. For non-production deployments, this will be appropriate. Proceed past any security exceptions raised by your browser. For production deployments, a valid certificate can be installed and these exceptions will not be needed.
In the Access Gateway Admin Console, enter your login credentials and click Login.
Username: admin Password: <default password>
Click the Applications tab.
Click +Add to add a new application.
Select the Access Gateway Sample Header AppAn abbreviation of application. Essentially, it is a web-based site used to perform any number of specific tasks, and requires authentication from end users by signing in. option from the left column menu, and click Create.
The New Protected Application wizard will start and display the Setting tab for the application being added.
Review the Settings tab then click Next.
The Settings page provides options with which to further configure the application.
For more information on the application setting options, see Application Settings.
The Attributes page provides a list of attributes that will be passed into the application. This page also provides the ability to add, edit, or remove any attribute.
For more information on the attribute options, see Application Attributes .
Add a Custom Attribute to Okta
In a new tab, Navigate to your Okta OrgThe Okta container that represents a real-world organization. and log in as an Administrator.
Navigate to the Directory > Profile Editor section.
- Click Profile in the Actions column.
- Click + Add Attribute to add a custom attribute that will be used to send header information through the Sample Header Application.
- Enter Gender for the Display name and gender for the Variable name. Click Save.
- Click Directory > People.
- Select your account under the Person & Username column.
- Click the Profile tab, and click Edit.
- Scroll down to the Gender attribute, and enter a corresponding value.
- Click Save.
Complete the Header Application Configuration
Return to the Access Gateway Admin Console.
Select the new application and click the pencil icon.
In the Attributes section, click the +.
Scroll down to the Add new Session Attribute window.
In the Name field, enter manager, and select the manager attribute type in the Value field.
In the Value menu, type in the name of the attribute you want to add, and then click the new attribute in the dropdown menu.
- Click Next.
- Click Done.
- Confirm that the Sample Header App is displayed as Active in the Protected Applications list.
- Click the Goto App icon.
Ensure that the Public DomainA domain is an attribute of an Okta organization. Okta uses a fully-qualified domain name, meaning it always includes the top-level domain (.com, .eu, etc.), but does not include the protocol (https). defined in the Configure the Header Application Settings is added to local host file or DNS Server pointing to the VM running Access Gateway. For example:
<ip address> <app public domain> xxx.xxx.xxx.xxx header.gateway.info
Test the Sample Header Application
Select IDP Initiated from the drop down menu to verify the application is working.
Your Okta tenant administrator will need to assign the header application to you.
- In the application page, review and verify that the Sample Header App sent to Okta matches your profile information.