Install and configure the Okta IWA Web agent for Desktop Single Sign-on

Okta recommends using Agentless Desktop SSO to implement Desktop Single Sign-on (DSSO). Agentless DSSO requires less maintenance and has a simplified configuration process.

To simplify user access management, Okta encourages you to move from Integrated Windows Authentication (IWA) to agentless Desktop Single Sign-on (ADSSO). Okta is no longer adding new IWA functionality and offers only limited support and bug fixes.

To determine which type of Desktop SSO you have implemented, see Identify your Desktop Single Sign-on type.

Topics

• Migrate from Integrated Windows Authentication to agentless Desktop Single Sign-on
• Learn about the Okta IWA Web agent
• Okta IWA Web agent installation prerequisites
• Install the Okta IWA Web agent
• Configure Windows browsers for SSO
• Configure Mac browsers for SSO
• Activate the Okta IWA Web agent
• Configure SSL for the Okta IWA Web agent
• Configure routing rules for the Okta IWA Web agent
• Test the Okta IWA Web agent
• Test Okta IWA Web agent Desktop Single Sign-on
• View the Okta IWA Web agent status
• Customize the Active Directory DSSO sign-out page
• Configure failover for the Okta IWA Web agent
• Configure the Okta IWA Web agent Universal Principal Name
• Change the Okta IWA Web agent timeout period
• Disable Okta IWA Web agent authentication for specific clients
• Install the Okta IWA Web agent on a virtual machine
• Okta SSO IWA Web App version history