Skip to content

Configure Galigeo with SAP Business Objects

External Galigeo URL

When using a proxy between the browser and the BI server, you need to declare the external URL in the Galigeo administration > Proxy > External Url proxy If BI portal is accessed from client web browsers trough a frontal web server, you may want that Galigeo web application is also accessed trough this frontal web server

Declare the Galigeo service in the CMC

Connect to BOE CMC

  • Go to Applications > double click on Web Intelligence > Custom Elements
  • Add a new service with following parameters:
    • Service Name: Galigeo
    • Service URL: http(s)://<BOE_TOMCAT_SERVER>:<BOE_TOMCAT_PORT>/Galigeo
  • Click on [Test], in "Service Format" keep "text/html"
  • [OK] and check the service checkbox in the services list, then [Save]

Authorized URLs

note Since BI 4.2 SP7 Patch7, before declaring Galigeo Service URL in "Custom elements" section, you have to declare it in the new CMC section "URL White List", just beneath "Custom Elements" and "Properties" sections.

authorized urls

Enable WebI APIs (BI4.2 SPs and Patches since 2019 September)

Galigeo for WebI eXeprience relies on BOE APIs in order to display maps inside WebI reports.
Security rules to access the BOE APIs are continuously reinforced by SAP, which leads to changes in BI 4.2 SPs and/or patches released since 2019 September. Examples :

  • SAP BI 4.2 SP6 patch11 (10/23/2019), patch12 (12/09/2019), etc.
  • SAP BI 4.2 SP7 patch5 (09/05/2019), patch6 (10/11/2019), etc.
  • SAP BI 4.2 SP8 (02/24/2020), patch1 (04/10/04/2020), etc.

BOE APIs are no more available by default in those SPs and/or patches and need a specific procedure to get activated.

note Enabling WebI APIs is not needed with SAP BI 4.3.

advice There is a bug in BOE "Add External Extension" process that leads to a weird error message "HTTP Status 500 ....". But it does the job, so don't worry if this weird error message appears.

  • Connect to BOE CMC
  • Go to Users and Groups > right click on Everyone Group > Customization menu > Extensions panel
  • Click [Add...] to open "Add External Extension" popup and add "Galigeo Enable WebI APIs" extension, using the following parameters:
    • Extension URL: http(s)://<SERVER>:<PORT>/Galigeo/extension/Galigeo/wiapi/wiapi.json
    • Leave the other parameters to their default value

note The beginning of the URL (in green) is the one declared in the "Custom elements" section for Galigeo Service. Example: If Galigeo Custom element URL is https://my.organization.com/Galigeo then Extension URL is https://my.organization.com/Galigeo/extension/Galigeo/wiapi/wiapi.json

  • Click [OK] (the weird HTTP Status 500 ...." error message should appear),
  • Click [Save] at the bottom right, the "Galigeo Enable WebI APIs" appears in the
  • Click [OK] (the weird HTTP Status 500 ...." error message should appear),
  • Click [Save] at the bottom right, the "Galigeo Enable WebI APIs" appears in the extensions list
  • Check "Galigeo Enable WebI APIs" extension and click [Save], access to BOE APIs is now granted to Everyone group. webi

Certificate error SSLHandshakeException

If you get an error "javax.net.ssl.SSLHandshakeException", then you need to install the required certificate on Tomcat.

The best way to declare an SSL certificate in the SAP JVM is to involve the security team of the organization as they have the knowledge of the different kind of certificates they have generated for a given server or domain.

To help we give here some guidelines (adapted from https://help.sap.com).

Your Security Authority should have provide you an intermediary certificate file usually with the ".pem" extension (distinct from the one declared in Tomcat). Example : bo4-my.organization.com_CER.pem

In the following guidelines we assume that is E:\SAP BusinessObjects

  • Copy "bo4-my.organization.com_CER.pem" into the folder "E:\SAP BusinessObjects\SAP BusinessObjects Enterprise XI 4.0\win64_x64\sapjvm\jre\lib\security"
  • Open a DOS Command Prompt window
  • Move to "E:\SAP BusinessObjects\SAP BusinessObjects Enterprise XI 4.0\win64_x64 \sapjvm\jre\lib\security" : > cd "E:\SAP BusinessObjects\SAP BusinessObjects Enterprise XI 4.0\win64_x64\sapjvm\jre\lib\security"
  • Backup the default JVM keystore cacerts: > copy cacerts cacerts.original
  • Declare the certificate into the JVM keystore: > "E:\SAP BusinessObjects\SAP BusinessObjects Enterprise XI 4.0\win64_x64\sapjvm\jre\bin\keytool" -import -alias <local certificate name> -file <certificate file> -keystore cacerts
    • Example: "E:\SAP BusinessObjects\SAP BusinessObjects Enterprise XI 4.0\win64_x64\sapjvm\jre\bin\keytool" -import -alias my.organization.com_CER -file bo4-my.organization.com_CER.pem keystore cacerts
    • You will be prompted for the keystore password. The default password is: changeit You will be prompted to trust the certificate. Answer is: yes If adding the certificate is successful, you will get something like: Certificate was added to keystore