Create the application
This topic describes how to create the Access Gateway admin app.
- Sign in to the Access Gateway Admin UI console.
- Click the Applications tab.
- Click +Add.
-
Select Access Gateway AdminUI from the side menu.
-
Click Create. The New Protected Application wizard starts and displays the Setting tab.
- In the Essentials pane, enter the following information:
Field Value Label The name of the application, like Access Gateway Admin UI. Public Domain The external-facing URL of the gateway. This is typically similar to gw-admin.[domain.tld], like gw-admin.myaccessgateway.com. Post Login URL Leave this item unchanged.
Group Enter the name of the group that you created in Add an Okta org group. - See Certificate use for details about certificates.
- See Certificate management for a task flow for obtaining and assigning certificates.
- Expand the Certificates tab.
By default, when you create the app, the system generates a self-signed wildcard certificate and assigns it to the app.
- Optional. Click Generate self-signed certificate. A self-signed certificate is created and automatically assigned to the app.
- Optional. Select an existing certificate from the list. Use the Search field to narrow the set of certificates by common name. Use the page forward (>) and backward (<) arrows to navigate through the list.
-
Click Next. The Attributes page appears. Don't modify this list. Access Gateway requires this attribute set.
- Click Next. The Policy page appears.
- Click Done.
All apps, including the Access Gateway Admin UI console app, require a self-signed or signed certificate.
Include signed certificates wherever you terminate SSL. You can terminate SSL at Access Gateway or any other network component, like a load balancer.
If you terminate SSL at a load balancer, on the Access Gateway Admin UI console app, you also need to use a certificate that is trusted by the load balancer.
If you terminate SSL on the Access Gateway Admin UI console application, you must use a signed certificate, which must be on the Access Gateway node and be associated with the Access Gateway Admin UI console application.