Add an Okta Auth Module

Add an Okta Auth Module to use to create a secondary authentication relationship between Access Gateway and a secondary Okta org.

An Okta Auth Module requires a defined trust relationship between the Access Gateway instance and the Okta tenant.

To define a trust relationship between an Okta org and the Access Gateway instance:

  1. In the Admin Console, go to SecurityAPI.
  2. Select the Trusted Origins tab.
  3. Click Add Origin.
  4. Enter the following values:




    A name for the Auth Module (for example, Trusted Origin for Access Gateway).

    Origin URL

    URL for Access Gateway instance (for example, https://gateway.tld).


    Choose Redirect.

  5. Click Add.
  1. Sign in to the Access Gateway Admin UI console
  2. Add an Auth Module and select Okta.

  3. Enter the following details:
    NameName used to identify the Auth Module (for example, Okta AM).

    Short Name

    An automatically generated short name for this Auth Module.

    Okta Org

    Your Okta org (for example,


    A list of attributes returned from Okta and available to Access Gateway application (for example, login, firstName, lastName, email).


    Optional. Enter description.

  4. Click Not Validated. Okta Access Gateway attempts to validate the connection. If successful, the label changes to Valid.
  5. Click Okay.