Cognos TM1 SSL connection
To connect to Cognos TM1 with HTTPS and an SSL secured port, follow these steps:
- Configure Tomcat SSL. (For example, for more information, see:
http://tomcat.apache.org/tomcat-7.0-doc/ssl-howto.html).
- From the command line, go to the C:\Program
Files\ibm\cognos\tm1_64\bin64\jre\7.0\bin directory (this is
the default installation path) and run the following command to generate a
file called .keystore in your home
folder:
keytool -genkey -alias tomcat -keyalg RSA - In the C:\Program Files\ibm\cognos\tm1_64\tomcat\conf
folder, add the following connector settings to the
server.xml
file:
<Connector SSLEnabled="true" acceptCount="100" clientAuth="false" disableUploadTimeout="true" enableLookups="false" maxThreads="25" port="8443" keystoreFile="/Users/loiane/.keystore" keystorePass="password" protocol="org.apache.coyote.http11.Http11NioProtoco l" scheme="https" secure="true" sslProtocol="TLS" /> - Restart the IBM Cognos TM1 Application Server service.
- From the command line, go to the C:\Program
Files\ibm\cognos\tm1_64\bin64\jre\7.0\bin directory (this is
the default installation path) and run the following command to generate a
file called .keystore in your home
folder:
- From the command line, use the following command to export the certification file
for the newly created
keystore:
keytool -export -alias tomcat -file certfile.cer -keystore C:\Users\Administrator\.keystore - From the command line, use the following command to import the certification file to the JRE
used by SPSS® Modeler Server:
keytool -import -alias as -file C:\Leon\Temp\certfile.cer -keystore "c:\Program Files\IBM\SPSS\Modeler\<version>\jre\lib\security\cacerts"
You can then use HTTPS and the SSL secured port number to connect to Cognos TM1.