Support connection

The Support Connection menu option allows you to enable and disable connections to Okta Support, display whether the VPN is enabled, and show the IP address that the VPN is using.

Enable the Okta Support connection

Enabling the Okta Support connection involves two steps: obtaining an API token from the Okta org, and enabling the connection in the Access Gateway Management console.

Obtain the API token from the Okta org

  1. Sign in to your Okta org as an administrator.
  2. In the Admin Console, go to SecurityAPI.
  3. Click Create Token.
  4. Enter a name for the token (for example, Access Gateway 2021.02 token).
  5. Click Create Token.
  6. Copy the token value that appears and paste it into a note app or something similar. You'll need it when you enable the Okta Support connection in the Management console.
  7. Click OK, got it.

Enable the Okta Support connection in the Management console

  1. Sign in to the Management console.
  2. Select 9 to open the Support connection submenu.
  3. Press 1 - Enable Support Connection to enable the connection.
  4. Press y to confirm, or n to cancel.
  5. Enter your Okta org URL as either {yourorg}.oktapreview.com or {yourorg}.okta.com according to the type of org that you're using.
  6. Copy the API token value from the note app where you stored it when you created the API token and paste it into the field. Delete the note where you stored the token. Access Gateway validates the token and enables the support connection. This process can take up to 20 seconds. A progress indicator shows the status of the process.
  7. Press x to return to the previous menu.

Disable the Okta Support connection

  1. Sign in to the Management console.
  2. Select 9 to open the Support connection submenu.
  3. Press 2 - Disable Support Connection to disable the connection.
  4. Press y to confirm, or n to cancel. Access Gateway disables the support connection. This process can take up to 20 seconds. A progress indicator shows the status of the process.
  5. Disabling the support connection can take up to 20 seconds. A progress indicator shows the status of the process.
  6. Press x to return to the previous menu.

Show the current VPN tunnel IP address

When Access Gateway connects to the Okta Support VPN, a specific IP address is assigned to the VPN tunnel it's using. This IP address appears in the Management console.

  1. Sign in to the Management console.
  2. Press 1 - Manage network interfaces.
  3. Press s.
  4. Press Enter to display the running configuration details. The IP address appears beside the tun0 item.