Upgrading Cognos from v10.2.2 to 10.2.2 with FP5. The patch was added to remediate TLSv1.2 vulnerabilities in Cognos. Without the patch, the Cognos application failed to launch properly when TLSv1.2 was enabled in the registry.
See: https://www.us-cert.gov/ncas/alerts/TA14-290A for more information regarding the vulnerability.
After upgrading, the following error appears when attempting to connect Roambi ES to Cognos portal:
ERROR com.mellmo.roambi.servlet.filter.HttpHeaderAuthFilter - Request does not contain header: 'sm_user'
- SAP Roambi Enterprise Server
- IBM Cognos
SSL and/or TLS 1.0 and TLS 1.1 have not been disabled.
The issue can be resolved by disabling SSL and TLS 1.0 and TLS 1.1.
This change needs to be completed in the JAVA Administration Console:
• Program Files/Java/Configure Java
• use the Advanced TAB to disable SSL 3.0 SSL 2.0 TSL 1.o and TLS 1.1
or add the following lines in the java.security file of the JAVA JRE and JDK on the client machine, in this case the Roambi Server:
ERROR com.mellmo.roambi.servlet.filter.HttpHeaderAuthFilter - Request does not contain header: 'sm_user' , KBA , BI-ROM-ES-SRC , Roambi enterprise server Service , Problem