s1k4h (s1k4h) asked a question.
Okta Radius support? Okta Access Gateway?
Okta Radius support? Okta Access Gateway?
Could someone advise me is this correct understanding for choosing one of the Okta solution for accessing on-prem app from external location?
If On-Prem apps are Radius app and user can access external location via VPN, 'Radius integration' is first choice for integrating on-prem app.
If On-Prem app are not Radius app or organisation has not got VPN access to organisation network (both Radius server and App servers) , the 'Okta Access Gateway' is solution for accessing On-prem app.
Many Thanks,
Ichi
The OKTA access Gateway is mainly for the legacy applications which requires header based integrations. If you need to pass user attribute in headers to your application (Provided application doesn't support SAML/OAuth) then Okta Access gateway is useful.
Note: There is a SAML Integration between your OKTA org & the Okta Access Gateway & OAG is acting as a policy enforcement point to your On-Prem applications. Attached is the solution diagram of Okta Access Gateway.
I hope it helps.
Hi Sandeep,
Thank you for your explanation about OAG. The flow to the on-prem app via OAG is useful for understading the process.
Could someone also help me that what kind circumstance Okta does recommend the Radius Integration solution rather than OAG?
Thank you.
Hi Masahiro,
As far as I know about Radius Authentication, It is to protect your Network devices, Unix Servers through the RADIUS protocol. so If you want to protect your Servers/Network devices, the RADIUS is the best options.
Hi Sandeep,
Thank you for sharing your useful knowledge. I appriciate your help.