Manage Access Gateway day to day

After initial deployment and integrating applications, administrators must perform normal day to day functions, such as monitoring, configuring logging, and similar tasks.
The following list includes common day to day administrative tasks:

Task Description
Administer the Access Gateway support VPN The Support VPN is a mechanism used by select Okta support individuals to access an Access Gateway instance at the operating system level.

See also Okta support access.

Backup and restore

Create backups of your Access Gateway configuration. Use a backup to restore your configuration.
Configure Access Gateway proxy server Configure Access Gateway to use a proxy. Access Gateway instances must be rebooted after proxy configuration.
Configure log forwarders Configure log forwarders to work with Access Gateway. See Administer logging.
Configure High Availability Access Gateway supports high availability by creating a cluster of Access Gateway nodes or instances.
Download logs Download and expand Access Gateway system logs.
Upgrade latest workflow

Selective upgrade workflow

Upgrade Access Gateway to the latest version or to a specific version.
Manage SSL/TLS termination Configure TLS termination. See Application certificate use and Manage certificates and certificate chains.
Manage network interfaces Create network interfaces and configure their routing, often to segregate traffic.
Metrics monitoring Monitor Access Gateway using metrics-based monitoring. See Monitoring.
Manage trusted domains Manage and view known trusted domains.
Perform admin renomination Introduce an admin node that runs the latest version of Access Gateway

Less common system tasks

Task Description
Administer Auth Modules How to add authorization modules (auth modules) to establish a secondary source of truth for authentication. Helpful in the case where Access Gateway can't reach your Okta tenant.

The use of auth modules is very rare. Consider consulting with your Okta support representative before you implement auth modules.

Administer local Identity Providers Add a local identity provider. If no Okta org IdP can be reached, the local IdP can be used to provide application access.
Administer SNMP monitoring How to enable Simple Network Management Protocol (SNMP) support and what functionality is available.

Reference