on 03-02-2018 7:33 PM
Hello friends, I have a question. I'm trying to configure the connection to SAP universes through Live Data Connection (Direct Connection). For this I had to configure the "https" on my BO server. The question I have is whether it is mandatory to set up a certificate signed by certification authority because I did not do it like that and the loading of universes unx does not work properly, I only configured the https but did not send to sign the certificate to a certification authority.
Can you please guide me?
Thanks
Kind Regards
Victor
Hi Victor,
You always need a valid certificate for your browser:
If you have an internal certificate authority and your computers have its root certificate installed, you can sign the certificate in Tomcat using that Certificate Authority.
Regards,
Julian
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Julian,
I believe I have a SAP ticket open with you on this?
I have 1 tomcat server where CORS is configured and I have BOE/CMS installed on another server. The connectivity setup in the SAP analytics cloud is all working fine. I followed all the steps mentioned here
When I try to create a Live connection to universe I keep getting "Failed to connect" error.
What am I missing? All the KBAs I have come across related to this error are for SAP HANA or reverse proxy. I am just trying to setup live connection to SAP universe and we don't have reverse proxy.
Any help on this would be much appreciated.
Thanks!
Hello Victor - please check the SAP Guided Answers at https://www.sapanalytics.cloud/guided_playlists/connect-sap-universe-live/
"
"
Source: SAP
Good luck,
Tammy
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
If you're using a reverse proxy (which will need a PATH connection) then in apache's httpd.conf if you add
## next 3 lines only needed if using self-signed certificates and you are not using SSL 2.4
## Otherwise remove (comment them) to allow the remote server certificate's
## CN field is compared against the hostname of the request URL
## PeerExpire checks the certificate has not expired
SSLProxyCheckPeerCN off
SSLProxyCheckPeerName off
SSLProxyCheckPeerExpire off
This will allow your reverse proxy to work against a local Tomcat machine talking SSL that has a non-signed certificate. Your browser will still be prompted to trust the certificate, unless you get it signed by a Certificate Authority
Regards, Matthew
PS for universe connectivity with SAC, I'm developing a wiki site dedicated for it
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
75 | |
9 | |
7 | |
7 | |
6 | |
6 | |
6 | |
6 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.