內部部署資料閘道常見問題集On-premises data gateway FAQ


問題︰實際的 Windows 服務稱為什麼?Question: What is the actual Windows service called?
回答:閘道在服務中稱為內部部署資料閘道服務Answer: The gateway is called On-premises data gateway service in Services

問題︰閘道需求為何?Question: What are the requirements for the gateway?
回答︰請參閱主要閘道文章的<需求>一節。Answer: Take a look at the requirements section of the main gateway article.

問題︰閘道支援哪些資料來源?Question: What data sources are supported with the gateway?
回答︰請參閱主要閘道文章的資料來源表。Answer: See the data sources table in the main gateway article.

問題︰雲端資料來源 (如 Azure SQL Database) 需要閘道嗎?Question: Do I need a gateway for cloud data sources like Azure SQL Database?
回答:否!Answer: No! 此服務不需要閘道就能連接至該資料來源。The service will be able to connect to that data source without a gateway.

問題︰雲端有任何閘道輸入連線嗎?Question: Are there any inbound connections to the gateway from the cloud?
答: 否。Answer: No. 閘道使用 Azure 服務匯流排的輸出連線。The gateway uses outbound connections to Azure Service Bus.

問題︰如果封鎖輸出連線會怎麼樣?Question: What if I block outbound connections? 需要開啟什麼?What do I need to open?
回答︰請參閱閘道使用的連接埠清單和主機。Answer: See the list of ports and hosts that the gateway uses.

問題︰ 閘道必須和資料來源安裝在同一部電腦嗎?Question: Does the gateway have to be installed on the same machine as the data source?
答: 否。Answer: No. 閘道會使用之前提供的連接資訊,連接至資料來源。The gateway will connect to the data source using the connection information that was provided. 就這一點而言,請將閘道視為用戶端應用程式。Think of the gateway as a client application in this sense. 它只需要能夠連接至之前提供的伺服器名稱即可。It will just need to be able to connect to the server name that was provided.

問題︰從閘道對資料來源執行查詢會有何種延遲?Question: What is the latency for running queries to a data source from the gateway? 最佳架構為何?What is the best architecture?
回答︰建議您讓閘道盡可能接近資料來源,以避免網路延遲。Answer: It is recommended to have the gateway as close to the data source as possible to avoid network latency. 如果可以將閘道安裝在實際的資料來源上,就能將其造成的延遲降到最低。If you can install the gateway on the actual data source, it will minimize the latency introduced. 亦請考慮資料中心。Consider the data centers as well. 例如,如果您的服務利用美國西部的資料中心,而您將 SQL Server 裝載於 Azure VM,您可能會希望 Azure VM 也位在美國西部。For example, if your service is making use of the West US data center, and you have SQL Server hosted in an Azure VM, you will want to have the Azure VM in West US as well. 這會將延遲降至最低,並可避免 Azure VM 的輸出流量費用。This will minimize latency and avoid egress charges on the Azure VM.

問題︰網路頻寬有任何要求嗎?Question: Are there any requirements for network bandwidth?
回答︰網路連線建議要有良好的輸送量。Answer: It is recommended to have good throughput for your network connection. 每個環境都不同,而且這也要看傳送的資料量而定。Every environment is different and this is also dependent on the amount of data being sent. 使用 ExpressRoute 有利於保證內部部署與 Azure 資料中心之間的輸送量等級。Using ExpressRoute could help to guarantee a level of throughput between on-premises and the Azure data centers.

您可以使用協力廠商的 Azure Speed Test 應用程式協助測量輸送量。You can use the 3rd party Azure Speed Test app to help gauge what your throughput is.

問題︰可以使用 Azure Active Directory 帳戶執行閘道 Windows 服務嗎?Question: Can the gateway Windows service run with an Azure Active Directory account?
答: 否。Answer: No. Windows 服務必須有有效的 Windows 帳戶。The Windows service needs to have a valid Windows account. 預設使用服務 SID (NT SERVICE\PBIEgwService) 執行。By default it will run with the Service SID, NT SERVICE\PBIEgwService.

問題︰結果會如何傳回雲端?Question: How are results sent back to the cloud?
回答︰透過 Azure 服務匯流排傳回。Answer: This is done by way of the Azure Service Bus. 如需詳細資訊,請參閱運作方式For more information, see how it works.

問題︰我的認證會儲存在哪裡?Question: Where are my credentials stored?
回答︰您輸入的資料來源認證會以加密狀態儲存在閘道雲端服務中。Answer: The credentials you enter for a data source are stored encrypted in the gateway cloud service. 認證會在內部部署閘道解密。The credentials are decrypted at the gateway on-premises.

問題︰可以將閘道放在周邊網路 (也稱為 DMZ、非軍事區域及遮蔽式子網路) 嗎?Question: Can I place the gateway in a perimeter network (also known as DMZ, demilitarized zone, and screened subnet)?
答︰此閘道必須能夠連接到資料來源。Answer: The gateway requires connectivity to the data source. 若資料來源無法在您的周邊網路中存取,此閘道就無法與其連接。If the data source is not accessable in your perimeter network, the gateway may not be able to connect to it. 例如,若您的 SQL Server 不在您的周邊網路中,For example, your SQL Server may not be in your perimeter network. 您就無法從周邊網路連線到您的 SQL Server。And, you cannot connect to your SQL Server from the perimeter network. 若您將此閘道部署在您的周邊網路中,其就無法聯繫 SQL Server。If you placed the gateway in your perimeter network, it would not be able to reach the SQL Server.

問題:可以強制閘道在 Azure 服務匯流排使用 HTTPS 流量,而不使用 TCP 嗎?Question: Is it possible to force the gateway to use HTTPS traffic with Azure Service Bus instead of TCP?
回答: 可以。Answer: Yes. 不過,這會大幅降低效能。Although, this will greatly reduce performance. 您會需要修改 Microsoft.PowerBI.DataMovement.Pipeline.GatewayCore.dll.config 檔案。You will want to modify the Microsoft.PowerBI.DataMovement.Pipeline.GatewayCore.dll.config file. 您會需要將值從 AutoDetect 變更為 HttpsYou will want to change the value from AutoDetect to Https. 根據預設,這個檔案位於 C:\Program Files\On-premises data gatewayThis file is located, by default, at C:\Program Files\On-premises data gateway.

問題︰我需要將 Azure DataCenter IP 清單加入白名單嗎?Question: Do I need to whitelist the Azure Datacenter IP list? 何處取得清單?Where do I get the list?
回答︰如果您要封鎖輸出 IP 流量,您可能需要將 Azure DataCenter IP 清單加入白名單。Answer: If you are blocking outbound IP traffic, you may need to whitelist the Azure Datacenter IP list. 目前,閘道會使用 IP 位址及完整網域名稱來與 Azure 服務匯流排通訊。Currently, the gateway will communicate with Azure Service Bus using the IP address in addition to the fully qualified domain name. Azure DataCenter IP 清單會每週更新一次。The Azure Datacenter IP list is updated weekly. 您可以下載 Microsoft Azure 資料中心的 IP 清單You can download the Microsoft Azure Datacenter IP list.

<setting name="ServiceBusSystemConnectivityModeString" serializeAs="String">

高可用性/災害復原High Availability/Disaster Recovery

問題︰有任何為閘道啟用高可用性案例的計劃嗎?Question: Are there any plans for enabling high availability scenarios with the gateway?
回答:有,這是 Power BI 小組目前投入的領域。Answer: Yes, this is an area of active investment for the Power BI team. 請持續關注 Power BI 部落格以取得這項功能的進一步更新。Please stay tuned to the Power BI blog for further updates about this feature.

問題︰災害復原有哪些選項?Question: What options are available for disaster recovery?
回答︰您可以使用修復金鑰還原或移動閘道。Answer: You can use the recovery key to restore or move a gateway. 請在安裝閘道時提供修復金鑰。When you install the gateway, supply the recovery key.

問題︰修復金鑰的優勢是什麼?Question: What is the benefit of the recovery key?
回答︰其提供移轉或修復閘道設定的方法。Answer: It provides a way to migrate or recover your gateway settings. 這也適用於災害復原。This is also used for disaster recovery.


問題︰閘道記錄位於何處?Question: Where are the gateway logs located?
回答︰請參閱疑難排解文章的<工具>一節。Answer: See the tools section of the troubleshooting article.

問題︰我如何知道哪些查詢傳送到了內部部署資料來源?Question: How can I see what queries are being sent to the on-premises data source?
回答︰您可以啟用查詢追蹤。Answer: You can enable query tracing. 這包括正在傳送的查詢。This will include the queries being sent. 完成疑難排解後,請記得變更回原始值。Remember to change it back to the original value when done troubleshooting. 啟用追蹤查詢會使得記錄變大。Having query tracing enabled will cause the logs to be larger.

您也可以查看資料來源的追蹤查詢工具。You can also look at tools your data source has for tracing queries. 例如,SQL Server 和 Analysis Services 可以使用擴充事件或 SQL Profiler。For example, for SQL Server and Analysis Services you can use Extended Events or SQL Profiler.

Analysis ServicesAnalysis Services

問題: 可以使用 msdmpump.dll 為 Analysis Services 建立自訂的有效使用者名稱對應嗎?Question: Can I use msdmpump.dll to create custom effective username mappings for Analysis Services?
答: 否。Answer: No. 目前不支援此項操作。This is not supported at this time.

問題: 可以使用閘道連接至多維度 (OLAP) 執行個體嗎?Question: Can I use the gateway to connect to a multidimensional (OLAP) instance.
回答: 可以!Answer: Yes! 內部部署資料閘道同時支援對 Analysis Services 表格式和多維度模型的即時連線。The on-premises data gateway supports live connections to both Analysis Services Tabular and Multidimensional models.

問題: 如果我安裝閘道器的電腦與使用 Windows 驗證的內部部署伺服器位在不同網域,會怎麼樣?Question: What if I install the gateway on a computer in a different domain from my on-premises server that uses Windows authentication?
回答: 這種情況下沒有標準做法。Answer: No guarantees here. 這完全取決於兩個網域之間的信任關係。It all depends on the trust relationship between the two domains. 如果兩個不同網域都位於受信任的網域模型,則此閘道或許可以連接至 Analysis Services 伺服器,且可以解析有效使用者名稱。If the two different domains are in a trusted domain model, then the gateway might be able to connect to the Analysis Services server and the effective user name can be resolved. 若否,您可能會登入失敗。If not, you may encounter a login failure.

問題: 如何知道哪些有效使用者名稱已傳遞至我的內部部署 Analysis Services 伺服器?Question: How can I find out what effective username is being passed to my on-premises Analysis Services server?
回答︰我們會在疑難排解文章內回答這問題。Answer: We answer this in the troubleshooting article.

問題︰ 我在 Analysis Services 中有 25 個資料庫,有方法可以一次全部加以啟用供閘道使用嗎?Question: I have 25 databases in Analysis Services, is there a way to have them all enabled for the gateway at once?
答: 否。Answer: No. 這在規劃之中,但我們沒有訂下時間範圍。This is on the roadmap, but we don’t have a timeframe.


問題︰閘道可以有多個系統管理員嗎?Question: Can I have more than one admin for a gateway?
回答: 可以!Answer: Yes! 當您在管理閘道時,您可以移至系統管理員的索引標籤以新增其他系統管理員。When you manage a gateway, you can go to the administrator’s tab to add additional admins.

問題︰閘道管理員必須是安裝閘道所在電腦上的系統管理員嗎?Question: Does the gateway admin need to be an admin on the machine where the gateway is installed?
答: 否。Answer: No. 閘道管理員可用來管理服務中的閘道。The gateway admin is used to manage the gateway from within the service.

問題︰是否可以防止組織中的使用者建立閘道?Question: Can I prevent users in my organization from creating a gateway?
答: 否。Answer: No. 這在規劃之中,但我們沒有訂下時間範圍。This is on the roadmap, but we don’t have a timeframe.

問題︰是否可以取得組織中閘道使用量和統計資料的資訊?Question: Can I get usage and statistics information of the gateways in my organization?
答: 否。Answer: No. 這在規劃之中,但我們沒有訂下時間範圍。This is on the roadmap, but we don’t have a timeframe.

Power BIPower BI

問題︰我需要升級個人閘道嗎?Question: Do I need to upgrade the personal gateway? 回答︰否,您可以繼續針對 Power BI 使用個人閘道。Answer: No, you can keep using the personal gateway for Power BI.

問題:透過內部部署資料閘道連線時,多久會重新整理一次 Power BI 儀表板中的磚?Question: How often are tiles in a dashboard, in Power BI, refreshed when connected through the on-premises data gateway?
回答: 約十分鐘。Answer: About ten minutes. DirectQuery 連線就是如此。DirectQuery connections are just that. 這並不表示磚會每十分鐘就對內部部署伺服器發出查詢及顯示新資料。This doesn’t mean that a tile issues a query to your on-premises server, and shows new data, every ten minutes.

問題: 如果 Excel 活頁簿具有連接到內部部署資料來源的 Power Pivot 資料模型,我可以上傳 Excel 活頁簿嗎?Question: Can I upload Excel workbooks with Power Pivot data models that connect to on-premises data sources? 針對此案例,我會需要閘道嗎?Do I need a gateway for this scenario?
回答: 沒錯,您可以上傳這種活頁簿。Answer: Yes, you can upload the workbook. 而且您不需要使用閘道。And, no, you don’t need a gateway. 但因為資料將會位在 Excel 資料模型中,所以 Power BI 中以 Excel 活頁簿為基礎的報表就不會是即時報表。But, because the data will reside in the Excel data model, reports in Power BI based on the Excel workbook will not be live. 若要重新整理 Power BI 中的報表,您必須每次重新上傳更新的活頁簿。In order to refresh reports in Power BI, you’d have to re-upload an updated workbook each time. 或者,使用已排定重新整理的閘道。Or, use the gateway with scheduled refresh.

問題:如果使用者共用具有 DirectQuery 連線的儀表板,其他使用者能在不具備相同權限的情況下查看資料嗎?Question: If users share dashboards that has a DirectQuery connection, will those other users be able to see the data even though they might not have the same permissions.
回應: 針對連接至 Analysis Services 的儀表板,使用者只會看到他們可以存取的資料。Answer: For a dashboard connected to Analysis Services, users will only see the data they have access to. 如果使用者沒有相同的權限,他們將無法看到任何資料。If the users do not have the same permissions, they will not be able to see any data. 若是其他資料來源,所有使用者都將共用管理員針對該資料來源所輸入的認證。For other data sources, all users will share the credentials entered by the admin for that data source.

問題︰為何我無法連接至我的 Oracle 伺服器?Question: Why can't I connect to my Oracle server?
答案︰您可能需要先安裝 Oracle 用戶端並使用適當的伺服器資訊設定 tnsnames.ora 檔案,才能連接至 Oracle 伺服器。Answer: You may need to install the Oracle client and configure the tnsnames.ora file with the proper server information in order to connect to your Oracle server. 這是閘道外的個別安裝。This is a separate install outside of the gateway. 如需詳細資訊,請參閱安裝 Oracle 用戶端For more information, see Installing the Oracle Client.

問題︰閘道可與 ExpressRoute 搭配使用嗎?Question: Will the gateway work with ExpressRoute?
回答: 可以。Answer: Yes. 如需 ExpressRoute 和 Power BI 的詳細資訊,請參閱 Power BI 和 ExpressRouteFor more information about ExpressRoute and Power BI, see Power BI and ExpressRoute.

