Manual Chapter : Defining an HTTP Connector Transport for Okta MFA

Applies To:

Show Versions Show Versions

BIG-IP APM

  • 16.0.0
Manual Chapter

Defining an HTTP Connector Transport for Okta MFA

Okta MFA requires that you create an HTTP Connector Transport to provide transport level parameters (such as an SSL profile and DNS resolver), used for sending requests to Okta.
  1. On the Main tab, click
    Access
    Authentication
    HTTP Connector
    HTTP Connector Transport
    .
  2. Click
    Create
    .
  3. Specify a
    Name
    for the connector transport.
  4. Select a
    DNS Resolver
    , or create one by clicking
    +
    .
  5. Select a
    Server SSL Profile
    or create one by clicking
    +
    .
    Okta MFA requires encrypted communication for the connection so the Server SSL Profile is required.
    F5 recommends that for the
    Trusted Certificate Authorities
    field in the SSL profile that you do not use the default
    ca-bundle.crt
    . Instead, create a smaller CRT bundle, which includes only the CA root certificates required by Okta. Refer to Okta documentation for details.
  6. Click
    Save
    .
The HTTP Connector Transport is defined, and appears in the HTTP Connector Transport list. You will need to select it when creating an Okta Connector.