Add an Access Gateway Admin UI console application
The purpose of this task is to step through the process of adding a second administrator app, assignable and accessible from your Okta org dashboard.
Using the administrator application Okta org administrators can assign the app to any user, allowing those users to access the Access Gateway Admin UI console and administer Access Gateway.
Create group and assign users
You must either assign users or define groups representing the users who can access the Access Gateway Admin UI console.
To define an Access Gatewaygroup within your Okta tenant:
- Sign in to your Okta tenant as an administrator.
- In the Admin Console, navigate to Directory > Groups.
- Click Add Group.
- Enter a name for the group such as Access Gateway Admins.
- Add an option description, such as Members of this group can administer Access Gateway.
- Click Add Group.
To add users to the newly added groups:
- Click the name of the newly added group.
- Click Manage People.
- Using the Search by people field, find those users who should be able to administer Access Gateway.
- From the Not Members list click Add All.
- Click Save when complete.
Create the application in Access Gateway
- Sign in to the Access Gateway Admin UI console.
Click the Applications tab.
Select the Access Gateway AdminUI option from the left column menu, and click Create.
The New Protected Application wizard starts and displays the Setting tab.
- In the Essentials pane enter:
Field Value Label The name of the application,
For example: Access Gateway Admin UI
Public Domain The external facing URL of the gateway. Typically similar to gw-admin.[domain.tld].
For example: gw-admin.myaccessgateway.com
Post Login URL
Group Enter the name of group created in the prior step.
- Expand the Certificates tab.
By default, when you create the application the system generates a self-signed wildcard certificate and assigns it to the app.
- Optional. Click Generate self-signed certificate. A self-signed certificate is created and automatically assigned to the application.
- Optional. Select an existing certificate from the list of provided certificates.
Use the Search field to narrow the set of certificates by common name. Use the page forward (>) and backward (<) arrows to navigate through the list of available certificates.
Click Next. The Attributes page appears.
The attribute set specified by the add application wizard is required by Access Gateway. Do not modify this list.
- Click Next. The Policy page will appears.
- Click Done.
While optional, Okta recommends that all applications include certificates.
See Certificate use for general information about certificate, or Certificate management for a general task flow for obtaining and assigning certificates.
- Sign in to your Okta tenant as a user in the Administer Access Gateway group.
- From the applications dashboard, find the Access Gateway Admin UI console app that you added and select it. The Access Gateway Admin UI console opens as the same user.