Integrate Applications

Securing applications is the core of Access Gateway.

Applications are deployed using an architecture similar to that shown in the Access Gateway Application Architecture diagram.

In general, Access Gateway:

Each application protected by Access Gateway is configured individually according to its specific needs and requirements.

When creating an application configuration in Access Gateway, there are various application templates available to speed the configuration process. Each application template is geared towards a specific set of application requirements. The Access Gateway Supported Applications page includes a list of all supported application types. The Supported Technologies page contains a list of all currently supported application versions and similar information.

 

 

Add an Example Header Application

There are many sample applications, in this guide we will integrate an example header application.

The header appAn abbreviation of application. Essentially, it is a web-based site used to perform any number of specific tasks, and requires authentication from end users by signing in. helps you familiarize yourself with how Access Gateway works as well as providing testing endpoint in case you need to troubleshoot application integration.

Prerequisites

Info

Note

A best practice for testing a header application is to add header.<yourdomain> to the /etc/hosts for testing purposes. On Windows this file can be found in c:\windows\system32\drivers\etc\hosts.
This entry should point to the same IP address as uses for Access Gateway. For example:

. . . 
10.0.0.1 adminAn abbreviation of administrator. This is the individual(s) who have access to the Okta Administrator Dashboard. They control the provisioning and deprovisioning of end users, the assigning of apps, the resetting of passwords, and the overall end user experience. Only administrators have the Administration button on the upper right side of the My Applications page.
10.0.0.1 header.myExampleDomain.com
. . .

Create Example Header Application

  1. Navigate to your Access Gateway instance and sign in as admin.

    Info

    Note

    Access Gateway creates a default self-signed certificate. For non-production deployments, this will be appropriate. Proceed past any security exceptions raised by your browser. For production deployments, a valid certificate can be installed and these exceptions will not be needed.

  2. Click the Applications tab

    .Select applications tab
  3. Click + Add to add a new application.
    Click Add.
  4. Select the Header Based option from the left column menu, and click Create.

    Select header based and click create.

    The New Protected Application wizard will start and display the Essentials pane for the application being added.

  5. In the Essentials pane specify the following:

    Field Value
    Label A name for the application.  
    For example: Example Header Application
    Public DomainA domain is an attribute of an Okta organization. Okta uses a fully-qualified domain name, meaning it always includes the top-level domain (.com, .eu, etc.), but does not include the protocol (https). A fully qualified host name such as header.<your domain>.
    For testing, add header.<yourdomain> to /etc/hosts.
    Protected Web Resource The URL of the protected resources.
    For testing enter http://header.service.spgw.
    Info

    Note

    Specifying a protected web resource of header.server.spgw tells Access Gateway to execute the header test suite when executed.

    Group Enter the group containing the users who should have access to the application.
    For testing this is typically the Everyone group.
    Description [optional] An appropriate description for your application.
  6. Review the Settings tab then click Done.

    For more information on the application setting options, see Application Settings.

Complete the Header Application Configuration

  1. Return to the Access Gateway Admin Console.

  2. Select the new application and click the pencil icon.

    add-sample-header-app-okta.06

  3. In the Attributes section, click the +.

    add-sample-header-app-okta.07

  4. Scroll down to the Add new Session Attribute window.

  5. In the Name field, enter manager, and select the manager attribute type in the Value field.

  6. Click Okay.

    add-sample-header-app-okta.08

    Info

    Note

    In the Value menu, type in the name of the attribute you want to add, and then click the new attribute in the dropdown menu.

  7. Click Done.
  8. Confirm that the Header App is displayed as Active in the Protected Applications list.

Test Example Header Application

 

For a complete list of all applications and their associated integrations details see Integrating Applications with Access Gateway

Top