Before encrypting OLAP the following steps must be done:
After encrypting OLAP these steps are necessary:
Jedox OLAP Server
In <Install_path>/Data/palo.ini add the key “encryption optional” or “encryption required”.
All clients and functions require a HTTPS connection. Only “/server/info” will be reachable unencrypted.
Same as “encryption optional”, but enforces additionally the Jedox Integrator to communicate on HTTPS.
If not communicating over localhost/127.0.0.1, it will be mandatory to use “encryption required”.
Each “http” or “admin” command need to use https instead of http and the HTTPS port.
– Add one https port: e.g. “https 7778”
– Add the key “key-files” followed by a list of the certificate files.
http "" 7777
key-files ca_bundle.pem cert_and_key.pem dh_key.pem
OLAP requires the certificate in the following format: “PEM formatted X509 certificate” (Base 64 encoded)
If the certificates need to be split, OLAP will allow this combination:
root certificate + ca chain
certificate + privatekey