Adding an HTTP/HTTPS Zero Trust Application

1. Access the Harmony SASE Administrator Portal and click Private Access > Applications.

2. Click Add Application.

   

   The Add application window appears.

   

3. In the General Settings section, enter these:

   1. Application Name - Name of the application.

   2. Protocol - HTTP or HTTPS

   3. Icon - Icon for the application.

   4. Host - Internal IP address of the server hosting the application. If custom DNS is configured, enter the hostname.

   5. Port -

      • 80 for HTTP

      • 443 for HTTPS

   6. (HTTPS Only) SSL Certificate Validation - Indicates that the application is accessible only if the application has a valid SSL certificate.

   7. Network - Network that hosts the application.

   8. (Optional) Add Start URI - Subpath to which the system must redirect after the member launches the application.

      For example, if a member enters www.company.com and if you want to be redirect to www.company/careers, then enter /careers.

   9. (Optional) Display Application Icon at Login Screen - Displays the application icon for the member in the login page.

   10. (Optional) URL Alias - URL for members to access the application.

       Important - You cannot add a URL alias after you create the application.

       

   11. In the External Domain (CNAME) field, enter a CNAME associated with your domain.

   12. From the SSL Certificate list, select the application domain SSL certificate uploaded in Certificate Manager.

   13. Go to your DNS administrator (for example, GoDaddy or R53 in AWS).

       Under your domain, use the CMANE specified in the previous step and point it to the application FQDN. The FQDN appears in the application settings after you click Apply.

       

   14. Custom HTTP Headers - Click Add Request Header and enter Name (host) and Value (internal FQDN).

       Mandatory if you have specified DNS in the Host field.

4. In the Access Groups and Members section, in the Groups and Members list, select the member groups that can access the application.

   

5. (Recommended) In the Policy Name list, select an application policy.

6. Click Apply.

   The system lists the application in the Applications page and enables it by default.

   

7. For members to access the application, see Accessing an Application by a Member.