AvePoint Learn
Request article
Contact support
Request article
Contact support
English

Home > Settings > Manage CAP Gateways

Export to PDF

Manage CAP Gateways

The CAP Gateway mode is a secure and efficient solution designed to enhance your cloud data protection. Installing gateways within your cloud environment ensures data residency and enhanced security. It is now available for the following resources: Azure VM and Azure storage (Azure blob and Azure file share).

Before configuring GAP gateways, you need to refer to Register an app to register an API app for CAP Gateway in Elements.

To configure GAP gateways, navigate to Settings > CAP Gateways. On the CAP Gateways page, you can select the customer tenant for which you want to manage CAP Gateways and perform the following operations:

  • Create – Click Create to create a new CAP Gateway. For details, refer to Create a CAP Gateway).

  • Edit – Click the name of the gateway to view and edit the update the settings.

  • Delete – Select gateways and click Delete to delete the CAP Gateways.

  • Refresh – Click Refresh to refresh gateways to update their status.

  • Manually configure – If the automatic installation of a gateway fails, you can select the gateway and click Manually configure to go to Cloud Backup for IaaS + PaaS to manually install it. For details, refer to Install a CAP Gateway.

  • Update – When there is a new version for the gateway, you can select the gateway and click Update. In the Update window, the current and new versions are displayed. Click Update to go to Cloud Backup for IaaS + PaaS to update it to the latest version. For details, refer to Install a CAP Gateway.

Register an app

To register an API app for CAP Gateway, complete the following steps:

  1. Navigate to Settings > API app registration in the Additional section.

  2. Switch to the CAP Gateway tab.

  3. Click Create app registration for a customer, enter a name for the app, select the customer for whom you want to create the app registration, and click Continue.

  4. Click Upload certificate to upload a certificate (.cer file). You can refer to the Prepare a Certificate section below to prepare a CER certificate.

  5. Click Save to save your configurations.

  6. When you finish the registration, click the app name and you can copy the Application (Client) ID from the Basics tab of the App registration details page.

  7. Multiple certificates can be added to an app. Click the Certificates tab of the App registration details page and click Add certificate to add more certificates for the app.

Prepare a Certificate

Three methods for preparing certificates are outlined below. Choose one of the following methods based on your scenario or use your own preferred method.

  • Key Vault – To prepare certificates using a Key Vault, refer to Prepare a Certificate.

  • Windows PowerShell – To prepare certificates using Windows PowerShell, refer to Prepare a Certificate.

  • Linux OpenSSL – Several Linux distributions are available. For this guide, we recommend using Ubuntu 24.04 LTS. If you use a different distribution, ensure OpenSSL is installed before generating your certificate. To prepare certificates using Linux OpenSSL, refer to the following steps.

    1. Log in to the Linux Ubuntu 24.04 LTS system.

    2. Execute the following command to generate a private key.

      openssl genrsa -out private.key 2048

    3. After generating the private key, execute the following command to create a self-signed certificate using the private key and export it into a .crt file.

      openssl req -new -x509 -days 365 -key private.key -out certificate.crt

    4. Export the generated private key and certificate into a .pfx file by executing the following command.

      openssl pkcs12 -export -out self_signed.pfx -inkey private.key -in certificate.crt

Create a CAP Gateway

To create a new CAP Gateway, follow the steps below:

  1. Go to the Settings > CAP Gateways page.

  2. Select the customer tenant for which you want to create the gateway from the drop-down list in the upper-left corner.

  3. Click Create. The Create CAP Gateways page appears.

  4. In the Basic information step, enter a name and an optional description for the CAP Gateway you are creating. Click Next.

  5. In the Platform step, select the resource types for which you want to create the CAP Gateway. Click Next.

  6. In the Settings step, configure the following settings and click Next:

    • Operating system – Currently, only Linux operating system is supported.

    • Options – Configure whether to allow automatic gateway updates and automatic upload of product logs to Elements.

      • Update automatically when a new version is available – Select this option to allow the CAP gateway to automatically update itself when a new version is released.

      • Allow automatic upload of product logs to Elements to enhance troubleshooting – Select this option to automatically send product logs to Elements, which helps troubleshoot issues more effectively.

    • Application (Client) ID – Enter the application (client) ID. To get the application (client) ID, go to Settings > API app registration > CAP Gateway. Click the app registration name to view and copy the application (client) ID.

    • Certificate – Click Add new certificate to add the private certificate which matches the public certificate you uploaded when registering app in the previous step. For details on how to prepare certificates, refer to Register an app > Prepare a certificate.

      Complete the following steps below to add the private certificate:

      1. In the Add new certificate window, click Browse to upload a certificate file (.pfx file). Note that the certificate must be one of the certificates you have added for the app.

      2. Enter the certificate password.

      3. Click Add.

    • How many CAP Gateways would you like to create? – Enter a number to configure the number of gateways you want to create. Click Next.

      NOTE

      You can create up to 10 gateways. The gateways will be named based on the name you defined, with a unique suffix appended.

  7. In the Subscription step, complete the following settings and click Next:

    • Destination tenant – Select a destination tenant.

    • Destination subscription – Select a destination subscription.

    • Destination region – Select a destination region.

    • Host virtual machine – Enter a host virtual machine name. If multiple gateways are created, each corresponding VM will be automatically named using this base name with a unique suffix appended.

    • Cache storage – Cache storage acts as a temporary, high-performance staging area during data operations to ensure secure and efficient data transfer. You can enter a name for the cache storage here, and a Microsoft Azure blob storage will be created in the tenant to store system files.

  8. In the Network step, complete the following settings and click Next:

    • Destination resource group – Create a new resource group or select an existing one.

      • Create a new one – Enter the resource group name to create a new group.

      • Select an existing one – Select a resource group from drop-down list.

    • Virtual network – Select a virtual network from drop-down list.

    • Virtual subnet – Select a virtual subnet from drop-down list.

    • Network interface name – Enter a network interface name.

    • Public IP address name – Enter a public IP address name.

    • Network security group – Select a network security group from drop-down list.

  9. Click Create to create the CAP Gateway.