AD agent in secondary domain performing IWA health check Skip to main content
https://support.okta.com/help/answers?id=9062a000000xzldqaw&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Tom FreemantleTom Freemantle 

AD agent in secondary domain performing IWA health check

Hello,

We have just added a secondary proof of concept domain to our Okta sandbox tenant.  It is for some provisioning workflow we are developing.  The problem is, the AD agent in the new POC domain is being used for the health check of the IWA agents in the original domain.  This is not good.  There is no way the IWA will ever be reachable from this POC domain.  Even if I use a global redirect URL, as you would for IWA agents in multiple domains, this won't solve the problem of an AD agent in one domain doing the health checks for the other domain.

What am I doing wrong here please?  Is there something I've missed?  I'm sure multiple domains are supported.

Thanks,
Tom
Best Answer chosen by Tom Freemantle
Mihai BurceaMihai Burcea (Okta, Inc.)
Hello Tom,

The only time Okta does Health check is when IWA is set to Automatic failover. If switched to Global Redirect, it will not perform the health check anymore, as it will point directly to the URL set. Manual failover will be another option in this scenario.
To further understand and Identify the solution for this scenario, please open a Support case with us and we can have a look together to your environment.

Thank you!
Okta Customer Support.

All Answers

Mihai BurceaMihai Burcea (Okta, Inc.)
Hello Tom,

The only time Okta does Health check is when IWA is set to Automatic failover. If switched to Global Redirect, it will not perform the health check anymore, as it will point directly to the URL set. Manual failover will be another option in this scenario.
To further understand and Identify the solution for this scenario, please open a Support case with us and we can have a look together to your environment.

Thank you!
Okta Customer Support.
This was selected as the best answer
Tom FreemantleTom Freemantle
Thank you Mihal. That has fixed it.

Cheers
Tom