Access Gateway Admin UI Console Overview
The Access Gateway AdminAn abbreviation of administrator. This is the individual(s) who have access to the Okta Administrator Dashboard. They control the provisioning and deprovisioning of end users, the assigning of apps, the resetting of passwords, and the overall end user experience. Only administrators have the Administration button on the upper right side of the My Applications page. UI Console provides several options and settings to Access Gateway administrators. Using the Admin Console, you can add new Identity Providers, add application integrations, and manage settings. As an Access Gateway administrator, this is where most of the day-to-day management takes place.
There are five tabs available in the Admin Console at all times, listed below in the Contents section.
-
Topology
-
Applications
-
Sites
-
Settings
Topology
The Topology tab displays the Identity Provider(s) (IdPAn acronym for Identity Provider. It is a service that manages end user accounts analogous to user directories such as LDAP and Active Directory, and can send SAML responses to SPs to authenticate end users. Within this scenario, the IdP is Okta.) that is connected to the Access Gateway instance and the application(s) that are currently configured in the environment. Here is an example of a topology map:
Click an application on the topology map to edit the application settings.
Click the IdP icon to go to the IdP portal homepage.
Applications
The Applications tab lists all of the applications currently configured in the Access Gateway, and also provides these additional options:
Add: Use this to add an application to the Access Gateway environment.
GoTo application: Use this to initiate either an IDP-initiated or SPAn acronym for service provider. Generally, an SP is a company, usually providing organizations with communications, storage, processing, and a host of other services. Within Okta, it is any website that accepts SAML responses as a way of signing in users, and has the ability to redirect a user to an IdP (e.g., Okta) to begin the authentication process.-initiated flow to launch the application URL.
Edit application: Use this to edit an application configuration in Access Gateway.
Delete application: Use this to permanently delete an application configuration in Access Gateway.
Status: This icon indicates the current status of the application. The possible states are Active, etc.
Using the Applications Interface
Create an application
-
To create a new application, click + Add.
-
Select the application you want to create, and click Create.
Change an application status
-
To change the Status of an application, click Edit.
-
In the Settings tab, click the Application Status dropdown menu to activate, deactivate, or put an application into maintenance mode.
Delete an application
-
To Delete an application, click Delete.
Confirm the deletion by clicking Yes in the confirmation dialog.
Application Settings Menus
When creating a new application or editing an existing application, you are provided with three tab.;
These tabs allow you to change configurations that relate to the Access Gateway.
Settings
Attributes
Policies
Access Gateway Settings
The Access Gateway Settings tab allows you to:
-
Validate the status of your Access Gateway Cookie domainA domain is an attribute of an Okta organization. Okta uses a fully-qualified domain name, meaning it always includes the top-level domain (.com, .eu, etc.), but does not include the protocol (https). and Access Gateway Hostname.
-
Synchronize system time with the NTP server
-
Rerun the Access Gateway Setup via the setup wizard.
Note: This option takes you through the initial setup process that allows you to change the hostname, cookie domain, and IdP settings. -
Manage the Access Gateway IDPs, allowing you to either add, refresh, edit, or delete an IDP.
-
Manage the Access Gateway’s KerberosKerberos is a computer-network authentication protocol that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner. functionality, allowing you to either add, refresh, edit, or delete a Kerberos Realm.
-
Manage the Access Gateway Auth Modules, allowing you to either add, refresh, edit, test, or delete a Auth Module.
Access Gateway Support
The Support tab allows you to launch the Support Portal and enable a Support Connection for use.
-
Support Portal Login: Launches the Okta support portal for Access Gateway. You can use this to sign in to the Support portal to file or view support tickets.
-
Allow Support Connection: When enabled, this option allows Okta Support to connect to the Access Gateway instance in order to perform troubleshooting steps, review logs, and assist with resolving open issues. For more information on the Support Connection, see Access Gateway Support VPN.