Welcome to your AppGate ZTNA system
This section provides step-by-step instructions for configuring your first AppGate ZTNA Collective. A Collective is a group of one or more appliances. Appliances can operate as physical machines, virtual machines, or cloud instances that can operate as Controllers, Gateways, Connectors, Portals, LogForwarders, and more.
The first appliance you set up will be your Controller. Installing the Controller is a different process from installing any additional appliances from the Controller's admin UI and should not be confused with those steps.
Setting up the first appliance
The steps below guide you through the installation process and provide links to relevant pages.
Pre-installation checklist. Before you deploy AppGate ZTNA, it’s important to have a good grasp of your current network topology. To help streamline installation and configuration, our Pre-installation checklist covers things you need to consider prior to starting the process.
Appliance/instance creation. The process for creating your first appliance can vary depending on the type of appliance:
Hosted instances. Can be created using Appgate ZTP and is the simplest way to get your first hosted Controller(s) up and running.
Cloud instances. Images have been published in the AWS, GCP, and Azure Cloud marketplaces to streamline creating new cloud instances.
Physical machines. Hardware appliances can be ordered from AppGate and are supplied with the latest version of AppGate ZTNA pre-installed.
Virtual machines. VMs use ISO images available from the Download center. Example Installation guides are available for creating your virtual machines.
Create the first Controller. The first Controller section takes you through the process of creating a Controller using a selection of appliance options. Some options may mean the Controller is available automatically after step 2. Whichever option you choose, you will have a network-connected Controller with access to the admin UI. You will then be able to add additional appliance functions and provision secure access for users.
After creating your first Controller you will need to perform important tasks such as: provisioning redundant administrative access, adding logging services to help monitor the deployment of AppGate ZTNA, and installing a production license.
Provisioning redundant admin access. It is recommended that you provision access for other system administrators before configuring other aspects of the system. The AppGate ZTNA Admin Guide provides step-by-step instructions on setting up accounts, admin roles, and admin policies.
Deploying a LogServer. Logs are collected locally by each appliance and are accessible using the journalctl command. Initially you might want to add a LogServer to your Collective that will act as a collector for all the appliances. To add a LogServer:
Option 1: Add LogServer functionality to an existing appliance (such as your Controller). In the admin UI, open System>Appliances and click on the name of the appropriate appliance. Under the Functions tab check the LogServer option and save.
Option 2: Configure a new appliance and enable the LogServer.
Installing a license. Once the Controller has been configured it is possible to request and add a license to the system.
Deploying a Gateway. Now you can deploy a Gateway in one of the following ways:
Option 1: Add Gateway functionality to your Controller appliance.
Option 2: Configure a new appliance and enable a Gateway.
Now you are ready to configure other aspects of your system.
Help at hand
The Troubleshooting guide will direct you to the right section in the manual to solve any problems you might encounter.
For guidance on managing the system and provisioning user access, go to the General Administration section.
The admin UI section will help you configure the system and settings.