Deploy a new VM from the Access Gateway image

Deploy an Azure VM from the new Okta Access Gateway image version and connect the newly created instance to your Okta tenant.

To create the VM, run the following command. This creates a new VM with a specific version of your Access Gateway image and attaches it to the openvpn-dev-vnet virtual network and the openvpn-dev-public-subnet subnet.

# Command to create a VM from a specific image version in an existing VNet
az vm create \
    --resource-group rg-oag-qa-env \
    --name <YOUR_VM_NAME> \
    --image "/subscriptions/<SUBSCRIPTION_ID>/resourceGroups/rg-oag-qa-env/providers/Microsoft.Compute/galleries/AZ_OAG_OL8/images/okta-access-gateway/versions/<IMAGE_VERSION>" \
    --size "Standard_D2s_v3" \
    --location "East US" \
    --vnet-name "openvpn-dev-vnet" \
    --subnet "openvpn-dev-public-subnet" \
    --specialized

Note:

Because the image is Specialized, you don’t need to provide an admin username or password.

Run the following command to get the public IP address of the VM:
```
az vm show \
    --resource-group rg-oag-qa-env \
    --name <YOUR_VM_NAME> \
    --show-details \
    --query "publicIps" \
    --output tsv
```
Note:
Because you use an existing subnet, ensure that the subnet is configured to assign public IP addresses or attach one to the VM.
To access the Access Gateway Admin UI console, go to the following URL, where <YOUR_PUBLIC_IP> is the IP address from the previous step: https://<YOUR_PUBLIC_IP>:8443
To complete the Access Gateway setup and connect to your Okta tenant, follow the instructions in the Access Gateway Admin UI console.