cancel
Showing results for 
Search instead for 
Did you mean: 

How to enable SSL for BOE XI 3.0

Former Member
0 Kudos

Hi all

If I look at the documentation for enabling SSL for Business Objects Enterprise, I am not able to understand how to configure BOE in such a way that the infoview can be accessed securely through a path like https://server:port/InfoViewApp/logon.jsp instead of http://server:port/InfoViewApp/logon.jsp.

Does anybody know the exact steps for implementing such a scenario? We have external users that should be able to view reports securely.

With documentation I mean:

How to

http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/809bfd3c-5d3f-2b10-2681-e98fb0ec6...

Master guide

http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/404170c1-59ae-2b10-b19f-c86764e75...

Tomcat guide

http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html

We are running BOE XI 3.0.

Best regards,

Martin Søgaard

Accepted Solutions (0)

Answers (1)

Answers (1)

BasicTek
Active Contributor
0 Kudos

The exact steps depend on the web/app. Since BO doesn't have their own web/app the best place to look for step by step instructions is at the web/app site i.e. IBM - websphere, Oracle - OAS and weblogic, Tomcat, jboss, etc The steps will also depend on where you are getting your SSL certificates from (Microsoft CA, verisign, etc).

If you are using tomcat it looks like you already have the link to their SSL how - to.

Regards,

Tim

Former Member
0 Kudos

Hi Tim

Thanks for the answer.

So what you are saying is that the section in the administrators guide about SSL should be ignored if we have a windows/tomcat installation and want to configure SSL between the Tomcat and the client?

So what kind of SSL are you configuring if you follow those steps in the administrators guide? Is that SSL internally between the BOE servers?

Best regards,

Martin Søgaard

BasicTek
Active Contributor
0 Kudos

The SSL in the admin guide should be for BO services when tyhy are in a DMZ or some other unsecured location. We may also document web/app SSL but it's best to get up to date info from the vendor of the web/app.

Regards,

Tim

Former Member
0 Kudos

Hi Tim

Thanks for the info. In our case we only need to look at the web/app ssl configuration on the Tomcat then.

Regarding your comment on BO Services in DMZ - sometimes I guess it would also be relevant to use SSL even though the BOE servers are in a secure location as people from "the inside" could also be sniffing the information.

I have one final question though:

If I were to set up the SSL in the admin guide, and followed the directions with no errors thrown, then how do I test that the communication between the BO services are truly running SSL?

Best regards,

Martin Søgaard

Former Member
0 Kudos

Hi Tim

I have yet another question that you might be able to answer, if you have experience with the SSL on the Tomcat.

If you enable https communication on the tomcat according to documentation, will http communication still be possible or will that be redirected to https (on the configured port which standard is 8443).

Best regards,

Martin Søgaard

0 Kudos

Hi,

you have to deactivate (just look for " non-SSL HTTP/1.1 Connector " and comment the related lines out) the normal http connector in the $CATALINA_HOME/conf/server.xml file.

Regards,

Stratos