this is my first post, I'm a newbie with SAP BO and therefore not even sure if this is the right place for the question. If not, feel free to step on my toes and point me to the correct location.
I have done my first SAP BO 4.0 installation with default settings using all on-board-technology as possible, meaning I am using the BO-installed SQL Server 2008 Express and the BO-installed Tomcat 6.0.24. This Tomcat features Apache Axis2 1.3.
My problem is that the corporate security identified a security issue with Apache Axis2 and wants me to upgrade to at least 1.5 (current is 1.6) within the next few days or they'll disconnect the system no matter what. I've read stuff on the Apache-site and usually, Axis2 is deployed via a WAR-file and is like any other web application within the Tomcat. The normal way would be to undeploy the old app, deploy the new one and update your files that use Axis2.
Now, BO seems to behave slightly differently here. There is no real Axis2-web application, there are in fact 2 (folders "BusinessProcessBI" and "dswsbobje"). In the BOE-folder you can find many Axis2-files with "1.3" in the name as well, so it's not as simple as killing off these 2 webapps and replace it with a new one.
Updating BO to SP4 didn't change anything about this. I hoped it would upgrade the Axis2-component as well, but it didn't. I doubt that simply replacing the old Axis2-files with new ones manually will do anything besides breaking the system.
Does anyone have any idea what I can do right now? Thanks in advance!