Access Gateway Support VPN

Overview

The purpose of document is to describe the Access Gateway Support VPN and how its configured and used.



What is the Support VPN

The Support VPN is:

The Support VPN is used to access client appliance instances using a support only VPN and public key/private key encryption.

Access Gateway Support VPN Architecture
Access Gateway Support VPN Architecture

What can be done using the Support VPN

When connected to a client, Access Gateway appliance, Okta has three forms of access:


Drawbacks of disabling the Support VPN

While enabled by default, customers have the capability of disabling the support VPN.
Care should be taken when disabling the Support VPN. When disabled, Okta cannot:

  • Provide enhanced support or other professional services.
  • Troubleshoot, repair or examine a client appliance.
  • Download logs, configuration files, or logs
Info

Note

The Support VPN can be disabled and enabled on demand using the Admin UI and Command line consoles.  It is possible to enable the Support VPN on demand.


Managing the Support VPN

The Support VPN is enabled by default, but may be disabled or re-enabled using the Admin UI.

To enable or disable the Support VPN:

  1. Log in to the Access Gateway Admin Console

  2. Select the Support tab.
    Access Gateway Support tab.
  3. Use the Allow Support Connection toggle, to enable or disable the support connection.
    Enable:

    Disable:

    Info

    Note

    Changes to VPN connection occur immediately on change. The VPN support connection can be enabled on demand to allow Okta Support access to a Access Gateway instance.

Info

Note

The Support VPN can also be enabled or disabled using the command line interface. See Access Gateway Command Line Management Console Reference for more information.

Next Steps

Top