VPN Notifications

The VPN Notification feature alerts end usersIn Okta literature, we generally refer to "end users" as the people who have their own Okta home page (My Applications), using chiclets to authenticate into all of their apps. End users do not have any administrative control. When we refer to "users" we are generally referring to the individual(s) who have administrative control. when a VPN connection is required to connect to an appAn abbreviation of application. Essentially, it is a web-based site used to perform any number of specific tasks, and requires authentication from end users by signing in.. These notifications are customizable and are disabled by default.

Note: The VPN notification does not appear if the end user has selected the Auto-launch option in the app chiclet General settings. ClosedScreenshot

To access the VPN Notification feature, do the following:

  1. From the Administrative Dashboard, click the Applications drop-down menu.
  2. From the Applications page, scroll down to the VPN-required app, and click the appropriate app to view the app page.
  3. Go to the General tab.
  4. Scroll down to the VPN Notification section.
  5. Click Edit.

From here, you can specify your VPN accessibility requirements, create a custom message, and optionally include a URL that can point to detailed VPN instructions.

VPN Required Notification

The drop-down menu allows you to specify when to display a VPN notification for VPN-required apps.

Message

Use this field to write a custom message to your end usersIn Okta literature, we generally refer to "users" as the people who serve as Okta administrators. When we refer to "end users" we are generally referring to the people who the administrators serve. That is, those who use Okta chiclets to access their apps, but have no administrative control. such as Have you signed into the VPN?.

Optional Help URL

Use this optional field to provide a Help page URL to assist your end users in signing into your company VPN. If you are using Juniper IVE as the VPN, this is where you can insert an embed link for the Juniper IVE SAMLAn acronym for Security Assertion Markup Language, SAML is an XML-based standard for exchanging authentication and authorization data between an identity provider (IdP) and a service provider (SP). The SAML standard addresses issues unique to the single sign-on (SSO) solution, and defines three roles: the end user, the IDP, and the SP. app.

Using an Outsize Any Zones Option with Split-Tunneling VPNs

Split-tunnel VPNs are configured to direct traffic through the VPN for specific app URLs only. Browsing to a public site like Okta.com would not go through the VPN. This means that the client IP, as seen by Okta, does not change when the user has started the VPN.

To correctly use this option, make sure the split-tunnel VPN is configured to direct traffic to Okta.com through the VPN. To do this, add some specific Okta IP addresses (see Configuring Firewall Whitelisting) to the split-tunnel VPNs configuration.
Top