Provision Gitlab
Objective: Provision an application for Skyhigh Private Access (SPA)
Tasks
Define the GitLab applicaiton in Private Access
- From the Skyhigh SSE Console, from the configuration gear select Infrastructure > Private Access Configuration
- On the Authentication page, disable SAML if it’s enabled
- From the Applications tab, click Add Application
- Define your gitlab application as follows: - Name: Gitlab - Protocol: HTTP - Host: Your internal Gitlab DNS name - Port: 80 - Application Group: WorkshopApps
- Next to Assign Connector Groups click select and the check the box next to your WorkshopConnector (this is the SSE MicroPoP).
- Click Save.
Allow access to GitLab in your Private Access Policy
- From the top navigation bar, select Policy > Access Control > Private Access Policy
- If you see an existing rule related to GitLab, delete it using the 3-dot menu on the right hand side of the entry (this is a bug in the lab)
- Click the New Rule button
- Configure a new Private Access Rule as follows:
- Name: GitLab Private Access
- Criteria: If Application
- Operator: is
- Value: Gitlab
- Action: Allow
- On/Off: On (green)
Publish your policy
(Hint: The yellow shield)
Please compare the SCP policy revision in the SSE GUI with the active one at the client to ensure that you can reach your new application before you go to the next section and test.
- From the Skyhigh SSE Console, from the configuration gear select Infrastructure > Client Proxy Management and select your Default Policy under Configuration Policies - note your Revision ID
- Next, switch to your Client (RDP) and search for About Skyhigh Client Proxy
- Compare the revision ID shown with the ID from the SSE Console - if they match you are good to go
In case the policy version on the client is not the same as in the Skyhigh SSE Console:
- You can simply reboot the computer you connected to via RDP/Guacamole. A reboot always triggers a policy update and is quickly done in this environment