Description
This article will walk through the process of creating a Box application that will allow Cohesity Alta SaaS Protection (CASP) to backup data in your Box tenant. This process includes:
Creating a CASP application in your Box account.
Configuring the required settings on that app.
Authorizing that app against the Box tenant.
1. If not already configured, enable 2-step verification for the user account that will be used to generate the JWT public/private key. To do this, log into the Box account and click on the user profile in the top right corner, choose 'Account Settings', and scroll down to the section where it shows the option to enable 2-step verification:
Once 2 step verification is enabled go ahead to create CASP in box account.
2. Create the CASP app in your Box account.
A. Access the Box Developer Console https://app.box.com/developers/console
Open the Box Console and go to the Dev console :
Then create a new App:
Select custom App:
On the pop-up screen, select "Server Authentication (with JWT)” , Provide a unique name for the application and click "Create App".
Once the App is created, click on it and go to configuration, scroll down and copy Client ID and its secret and make a note of it.
6. Once the app is created, it will open the app page and default to the "Configuration" section.
7. Copy the ‘Client ID’ to the clipboard and save it to a notepad file. This will be used in the last step of the process.
8. Scroll down to the ‘App Access Level’ section and select the ‘App + Enterprise Access’ button like below.
6. Scroll down to the ‘Advanced Features’ section and enable the "Make API calls using the as-user header" option on the app.
7. In the ‘Add and Manage Public Keys’ section, click "Generate a Public/Private Keypair" to generate and download the JSON file. This file contains the JSON required by the connector service and the export utility to establish a Box connection.
8. When you generate this key, it will automatically generate a JSON file and auto-download it, open it and copy all the content from it to the connector service.
E.g. JSON file which is auto-downloaded :
JSON file should have all the keys required.
E.g
Copy the content from this file to connector service in HCS server.
Next step is to Authorize the CASP app. (You must be logged in as an Enterprise admin.)
Open the enterprise admin console business settings- check the below snapshot:
Click on the Apps link in the left side navigation menu of admin console, then choose Custom Apps at the top. Find the newly created app and hover over, click the ellipse menu, and choose Authorize App.
If your newly created app is not there, click on 'Add App' and enter the Client ID (App ID) and Secret which we made a note of earlier.
Once the App is added, you will have to authorize it from the same portal by using the 3 dots from the right corner.
Note: in the e.g, it's showing as an reauthorized app since it was already authorized, but in the first attempt it will show the authorize app.
Once the App is authorized, you must have copied all the data from JSON file already for the connector to run and complete a backup run.
Was this content helpful?
Translated Content
Please note that this document is a translation from English, and may have been machine-translated. It is possible that updates have been made to the original version after this document was translated and published. Veritas does not guarantee the accuracy regarding the completeness of the translation. You may also refer to the English Version of this knowledge base article for up-to-date information.