CA API Gateway 9.1

9.4 9.1

Configure the Gateway for AWS AMI

Once the Amazon Web Service (AWS) AMI instance is correctly set up, start the gateway and configure it as follows:
gateway84
Once the Amazon Web Service (AWS) AMI instance is correctly set up, start the
CA API Gateway
 and configure it as follows:
  1. Connect to the Gateway via SSH as user
    ssgconfig
    . If using PuTTY, acknowledge any security alerts about the key not being cached. 
  2. The Gateway main menu appears once you are successfully logged in.
    Option
    3
     (“Use a privileged shell”) in the main menu does not apply to the AMI version of the CA API Gateway image. If you need to access a privileged (that is, root) shell, connect to the CA API Gateway as the root user using PuTTY or use the Linux SSH command:
    ssh -i ./key root@hostname
  3. Perform this step only if you use static IP addresses. If you use dynamic addresses (default setting), skip to step 4.
    Select option
    1
     and then option
    1
     again on the next menu to configure the network. Complete the prompts on the screen.
    For more information, see Option 1 - Configure Networking and System Time Settings.
  4. From the main menu, select option
    2
     and then option
    2
     again to create a new Gateway database. This multi-step procedure involves setting up the following:
    For a detailed description of the database options, see Configure the Gateway Application.
    • Set Up the SSG Database
      > Create a MySQL database.
      > For the hostname, enter the RDS hostname (from "Launch a DB Instance" in Using the Gateway AMI Appliance)
      > Use default port
      3306
      .
      > Use default database name
      ssg
      > Use default database username
      gateway
      > Enter a password for the database user. Retype to confirm.
      > Enter the administrative username for the RDS (entered under "Launch a DB Instance" in Using the Gateway AMI Appliance).
      > Enter the administrative password for the RDS (entered under "Launch a DB Instance" in Using the Gateway AMI Appliance).
    • Set Up the SSG Failover Database
      >  Press
      Enter
       to skip setting up a SSG Failover Database.
    • Set Up the SSM Administrator
      This sets up the account for the Policy Manager administrator ("super user"). Enter a name and password. 
    • Set Up the SSG Cluster
      This steps sets up the Gateway AMI cluster.
      Note:
       This single AMI appliance is considered to be a cluster of one.
       > Enter the Gateway cluster fully qualified domain name (FQDN), for example: . This identifies the Gateway and is used to generate the SSL certificate.
      > Enter a password and retype to confirm. 
    • Set Up the SSG Node
      Press
      Enter
       to enable the node. This activates the AMI appliance when configuration is complete 
You may now connect to the Gateway using the Policy Manager. For more information, see "Start the Browser Client"  under Start the Policy Manager.
  • When connecting to the Gateway using the Policy Manager, use the public IP address provided by Amazon Web Services.
  • The credentials to enter are for the Policy Manager administrator, from "Set up the SSM Administrator" step above.
  • You are prompted for a license file the first time you connect to the Gateway. Install the license supplied by CA Technologies. For more information, see Manage Gateway Licenses.

Content feedback and comments