Problem with run reports Through sharepoint web parts -cause firewall rejection

Cognos 10 Business Intelligence Installation and Configuration
1

Hi to all
I have Cognos 10 Linux installations
Cognos application server and gataway(apache) on the same linux machine
After i configured web parts in Sharepoint server 2007 web parts starts be visible (cognos navigator)
but, when I try to start simply reports I get the error DPR-ERR-2079.
I saw the solution from MartijnC
[i]"Solution
On each distributed computer, start IBM Cognos Configuration and do the following:

  1. In the Explorer pane, click Security, IBM Cognos Application Firewall.
  2. In the right pane, click in the Value column next to Valid domains or hosts.
  3. Click the edit button.
  4. Enter the names of all the computers that you are configuring for fail over.
  5. Save and start the Cognos 8 configuration."[/i]

Problem is that I haven’t X -console configured on my linux machine and there is my question
How can I use Cognos Configurations in shell, or which file have CAF configurations ?

Thanks for any response.

2

Hi Max,

another option can be to disable the firewall of Cognos in de cogserver.xml. in de c8\configuration directory. Find firewall entry (which indicates true) and change this value to false.

to start or stop cognos with command line options see this link:

http://www.cogknowhow.com/forum/index.php?topic=46.0

3

Hi thanks for fast response.

Ok, maybe stopping CAF is an option, but only for my test, my Cognos admin never approved this on real environment.

  1. Now I know, that I must edit cogstartup.xml, but I don`t know which node in xml corresponds this settings ?
  2. What exactly means “Valid domains or hosts” - what I must set as Valid domains or hosts
    a) My gateway address http://cognosServername:PORT ?
    b) My Sharepoint server address http://SharepointServername:PORT ?

Thanks for any response.

4

This is the section you have to change
<crn:value xsi:type=“xsd:boolean”>false</crn:value>

- <crn:parameter name="CAF" opaque="true">
- <crn:value>
- <!--  caf_enabled: Specifies whether to enable Cognos Application Firewall validation.  
  --> 
- <!--  The Cognos Application Firewall is an essential component of product security helping 
           to provide protection against penetration vulnerabilities. Disabling the Cognos Application 
           Firewall will remove this protection; therefore, this should not be done under normal 
           circumstances. In addition, if third party XSS checking is enabled, CAF validation 
           must also be enabled.  
  --> 
- <crn:parameter name="caf_enabled">
  <crn:value xsi:type="xsd:boolean">false</crn:value> 
  </crn:parameter>