Create the application
This topic describes how to create the Access Gateway admin app.
- Sign in to the Access Gateway Admin UI console.
- Click the Applications tab.
- Click +Add.
-
Select Access Gateway AdminUI from the side menu.
-
Click Create. The New Protected Application wizard starts and displays the Setting tab.
- In the Essentials pane, enter the following information:
Field Value Label The name of the application, like Access Gateway Admin UI. Public Domain The external-facing URL of the gateway. This is typically similar to gw-admin.[domain.tld], like gw-admin.myaccessgateway.com. Post Login URL Leave this item unchanged.
Group Enter the name of the group that you created in Add an Okta org group. - See Certificate use for details about certificates.
- See Certificate management for a task flow for obtaining and assigning certificates.
- Expand the Certificates tab.
By default, when you create the app, the system generates a self-signed wildcard certificate and assigns it to the app.
- Optional. Click Generate self-signed certificate. A self-signed certificate is created and automatically assigned to the app.
- Optional. Select an existing certificate from the list. Use the Search field to narrow the set of certificates by common name. Use the page forward and backward arrows to navigate through the list.
-
Click Next. The Attributes page appears. Don't modify this list. Access Gateway requires this attribute set.
- Click Next. The Policy page appears.
- Click Done.
All apps, including the Access Gateway Admin UI console app, require a self-signed or signed certificate.
Include signed certificates wherever you terminate SSL. You can terminate SSL at Access Gateway or any other network component, like a load balancer.
If you terminate SSL at a load balancer, on the Access Gateway Admin UI console app, you also need to use a certificate that is trusted by the load balancer.
If you terminate SSL on the Access Gateway Admin UI console application, you must use a signed certificate, which must be on the Access Gateway node and be associated with the Access Gateway Admin UI console application.