Product:
Planning Analytics 2.0.5
Planning Analytics Workspace version 35
Linux Red Hat

Issue:
After setup of HTTPS to PAW you can not surf to the paw webpage.
If you check the pa-gateway log files in folder /ibm/paw/log/pa-gateway/ you see a error like this
AH01903: Failed to configure CA certificate chain!
in the pa-proxy-error.log file.

Solution:
Go to the /ibm/paw/config folder and check the file rights
ls -l
drwx—— dockeruser dockeruser 8774 Sep 26 11:03 pa-workspace.pem
if above will give that only the user dockeruser can read the certificate file, and therefor can not Apache read the file and include it in the upstart.
You need to ensure that the group docker can read the files.
To change owner and group of the file enter:
chown dockeruser:docker pa-workspace.pem
To change read rights to the file enter:
chmod 755 pa-workspace.pem
https://ss64.com/bash/chmod.html
https://ss64.com/bash/chown.html

Stop PAW with command in /ibm/paw/scripts folder;
./paw.sh stop
Start paw with command
./paw.sh

Now it should work. (you need to change path and users to match your environment.)

Troubleshoot:
In PUTTY you can write this BASH commands to check the PAW environment.
To check what docker containers that is running enter:
docker ps
if the first one say pa-gateway is restarting, this mean that the Apache server is not up and the pa-gateway can not load.
To go into the pa-gateway container enter:
docker exec -i -t pa-gateway /bin/bash
To read the Apache log enter:
more /var/log/apache2/error.log
Enter exit to return to Linux:
exit
To move to config folder enter:
cd /ibm/paw/config
To check content of paw.env file enter:
more paw.env
To edit paw.env file enter:
nano -w paw.env
Check that below rows are inside the paw.env file, this activate the https:
export EnableSSL=true
export ServerName=paw-server-name.domain.com
To save the changes in NANO enter:
ctrl+o
To exit NANO text editor enter:
ctrl+x

 

Sometimes a container is damage, then you can try to recreate it as below:

Stop the PAW containers with command:
./paw.sh stop
To erase pa-gateway container enter:
docker rm pa-gateway
To start paw and recreate containers missing enter:
./paw.sh

https://docs.docker.com/engine/reference/commandline/rm/

How setup HTTPS with PAW:
https://www.ibm.com/support/knowledgecenter/en/SSD29G_2.0.0/com.ibm.swg.ba.cognos.tm1_inst.2.0.0.doc/t_paw_enable_ssl.html

Product:
Cognos Analytics 11.0.7
Microsoft Windows 2012 server

Issue:
When you surf to Cognos Connection in a new setup of CA11 you get different error messages

Surf to: https://servername.domain.com/ibmcognos
Error: This page cant be displayed
Make sure the web address is correct
Look for the page with your search engine
Refresh the page in a few minutes

Surf to: https://servername.domain.com/ibmcognos/ibmcognos/ibmcognos
Error: server error in /ibmcognos application
the length of the URL for this request exceeds the configured maxUrlLength value.

Surf to: http://servername.domain.com/ibmcognos/bi/
Error: The website declined to show this webpage
Most likely causes:
This website requires you to log in

Surf to: https://servername.domain.com/ibmcognos/bi
Error: A blank page in Internet Explorer

Solution:
Go to Internet Information Services Manager
Check if you have set a HTTP redirect on the default web site, remove and try again.
Check if you have bindings on the default web page, if HTTPS is setup to a specific server name. Try with HTTPS set to a blank host name in the IIS Site binding setting.
Check if you have marked Require SSL for the Default Web Site, in IIS.

Product:
Planning Analytics 2.0.5 (PAX)
Microsoft Windows 2016 Server

Issue:
When you select a TM1 server in list of TM1 connections in Planning Analytics for Excel a HTTP 503 error appears.
If you test the connection to PAW in the options box it is OK.

Possible solution:
Inside the ADMINTOOL for PAW (planning analytics workspace) the value for TM1 Application Server Gateway URI is wrong, it may point to HTTPS when it should point to HTTP.
This if you have changed your setup of TM1WEB(WLP) from HTTPS to HTTP to do some testing.

Copy the URL to a web browser (IE) and test if you can surf there.
Example of URL are:
http://tm1webservername.domain.com:9510

More information:
https://www.exploringtm1.com/client-connection-to-pax/
https://www.ibm.com/communities/analytics/cognos-analytics-blog/cognosanalytics-and-planninganalytics-integration-walkthrough-part-3/

Product:
Planning Analytics 2.0.5 TM1
Microsoft Windows 2016 terminal server
TM1 package connector version 10.2.6100.8-0

Issue:
Inside TM1 architect you get a error when you run a TI process that uses the Package connector. Error happens when you start to import data to TM1 with the process.

Error Message:
Error: MetaData procedure line (0): CCognosPackage::BuildDataSource Exception: (TR3117) Unable to retrieve security objects. Please verify credentials.
– CCL-BIT-0005 A socket reported a communication error.
– CAM_Connect=0xffffffff -2113929065CAM-CRP-0321 The GSKit function ‘gsk_environment_init’ failed with the error code ‘9’

Solution:
Ensure that on the Planning Analytics server, where the TM1 applications are, that you have the GSK*.dll files that come with the TM1 package connector version. If they have been replace to solve other issues, you need to copy them back.

A clean new install of TM1 Package Connector on the PA 2.0.5 server can also help.

More information:

http://www-01.ibm.com/support/docview.wss?uid=swg21988056

Product:
Planning Analytics 2.0.5 TM1 Perspective version 11.0.5.79-0
Microsoft Windows 2016 terminal server
TM1 package connector version 10.2.6100.8-0

Issue:
When you start TM1 Perspective you get a error, if TM1 Package Connector is installed on the same computer. If you remove TM1 Package connector – then TM1 perspective works fine.

Error message:
Microsoft Excel
Missing Library c:\program files\ibm\cognos\tm1_perspective\bin\gsk8ssl.dll
C:\program files\ibm\cognos\tm1_perspective\bin\gsk8km.dll

Suggested solution:
After install of TM1 Perspective, copy the gsk8*.dll files from the c:\program files\ibm\cognos\tm1_perspective\bin folder to the package connector folder c:\program files(x86)\ibm\cognos\c10\bin folder. Overwrite the existing files.

Test to start TM1 perspective again.

If you use a older TM1 Package Connector version, then above error is also gone.

Product:
Planning Analytics 2.0.5
Planning Analytics for Office
Microsoft Windows 2016 server

Problem:
When you connect to PAW server from PAX inside Excel you get a error.

Error message:
System.Net.WebException: Unable to connect to the remote server —> System.Net.Sockets.SocketException: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond 192.168.200.10:8080
at System.Net.Sockets.Socket.DoConnect(EndPoint endPointSnapshot, SocketAddress socketAddress)
at System.Net.ServicePoint.ConnectSocketInternal(Boolean connectFailure, Socket s4, Socket s6, Socket& socket, IPAddress& address, ConnectSocketState state, IAsyncResult asyncResult, Exception& exception)
— End of inner exception stack trace —
at System.Net.HttpWebRequest.GetResponse()
at Cognos.Office.Reporting.Common.ImageBalloon.ShowAnimation()

Possible solution:
That a proxy server is setup inside IE – Internet options that is preventing the communication to happen.

Go to Control panel on your laptop
Click on Internet Options
Click Connections tab
Click LAN settings button
Unmark Proxy server
Click OK and test again.

More information:
https://www.exploringtm1.com/how-to-install-planning-analytics-for-excel-pax/
https://www.ibm.com/support/knowledgecenter/en/SSD29G_2.0.0/com.ibm.swg.ba.cognos.tm1_inst.2.0.0.doc/t_tm1_inst_sso_pax.html

Setup of SSL at TM1WEB
https://www.ibm.com/support/knowledgecenter/SSD29G_2.0.0/com.ibm.swg.ba.cognos.tm1_inst.2.0.0.doc/t_pa_use_ibmkeymgmt.html

Product:
Planning Analytics 2.0.5
PAX and PAW
Cognos Analytics 11.0.12
Microsoft Windows 2016 server

Problem:
When starting Excel and selecting Planning Analytics for Excel (TM1) you get a error after the login dialog.

Error message:
Cognos.Office.Tm1.Connections.Tm1WebException: The remote server returned an error: (503) Server Unavailable. —> System.Net.WebException: The remote server returned an error: (503) Server Unavailable.
at System.Net.HttpWebRequest.GetResponse()
at Cognos.Office.Tm1.Connections.Tm1Request.GetResponse()
— End of inner exception stack trace —
at Cognos.Office.Tm1.Connections.Tm1Connection.HandleWebException(Tm1WebException x, Uri path)
at Cognos.Office.Tm1.Connections.Tm1Connection.GetResponse(Tm1Request request)
at Cognos.Office.Tm1.Connections.Tm1Connection.SendRequest(Tm1Request webRequest, AcceptReturnEnum returns)
at Cognos.Office.Tm1.Connections.Tm1Connection.SendRequest(String method, String path, String postData, AcceptReturnEnum returns, Int32 timeout)
at Cognos.Office.Tm1.Connections.Tm1Connection.Get(String path, AcceptReturnEnum file, Int32 timeout)
at Cognos.Office.Tm1.Rest.Tm1RestCapabilities..ctor(Tm1Connection connection, String server, Int32 timeout)
at Cognos.Office.Tm1.Rest.Tm1RestConnection.RefreshCapabilities(String server, String path)
at Cognos.Office.Tm1.Rest.Tm1RestServer.UpdateCapabilities(String serverName)
at Cognos.Office.Tm1.Rest.Tm1RestDataSource.UpdateCapabilities(String serverName)
at Cognos.Office.Tm1.Tm1DataSource.On_LogOn(String server)
at Cognos.Office.Tm1.Tm1DataSource.Logon(LogonType logonType, DataSourcePropertiesCollection properties)
at Cognos.Office.Framework.Communications.DataSourceManager.LogOn(String dsType, String connectionString, String serverName, IDataSource& source)

Solution:
Check the values in PAW Admintool, special for the TM1 Application Server gateway URI. If that is wrong, like use HTTP instead of HTTPS when you have switch TM1WEB to use SSL, you will get above error inside PAX. To surf to PAW will still work fine.

When a user start Excel and PAX, the first connection is to the PAW server.
Then the PAW server will check the TM1S.CFG for value ClientCAMURI=http://caservername.domain.com/ibmcognos/bi/v1/disp
this URL will be used by PAX to log you in. After you login, the PMHUB.HTML file need to list the URL to PAW to allow you to get back.
You need to check the pmhub.html file in folder c:\Program Files\ibm\cognos\analytics\webcontent and c:\Program Files\ibm\cognos\analytics\webcontent\bi.
Open it in notepad++ and check that the PAW servers name or DNS alias at var pmhubURLs = [“https://tm1web.domain.com:9443” , “https://centospaw.lab.local”];
When you are back at PAW server in the communication route – pax will use the PAW ADMINTOOLS value in TM1 Application Server gateway URI before it show you are connected. If that value does not point to the CA11 server you get above error.

PAX is not using the PAW ADMINTOOLS value for IBM Cognos BI Gateway URI, instead you have the value ¬†export TM1LoginServerURL=”https://tm1serverhost:12345″ in the paw.env file. The TM1 application that use the HTTPPortNumber = 12345, that value in its tm1s.cfg file is used.

If the value in PMHUB.HTML is wrong you get a error like “Cannot redirect back to planning analytics because the host URL (http://centospaw.lab.local) has not been whitelisted.”

Do not enter the port number for paw server in the PMHUB.HTML file.

Product:
Cognos Analytics 11.0.12 Framework Manager
Microsoft Windows 2012 server

Problem:
When connecting to the Cognos Gateway from Framework Manager, you get an error after login.

Error message:
Script Error
An error has occurred in the script on this page
Line: 43
Char: 3
Error: ‘requirejs’ is undefined
Code: 0
URL: https//caservername.domain.com/ibmcognos/bi?b_action=xts.run&m=portal/ close.xts
Do you want to continue running scripts on this page?

Possible solution:
If SSO is enabled, and the client computer is in a different domain than the server computer, you can get similar errors. Turn off SSO on the IIS server and try again.

If SSO was enabled while running the script tool to setup IIS for CA11, you can disabled it again in IIS Manager. During the execution of the tool, SSO is configured. To disabled it, perform the following:
1. Open IIS Manager.
2. Expand the web site and alias that was created.
3. Single click on the bi folder.
4. Click on URL Rewrite.
5. Find SSO Login. Single click on it and on the right hand action pane, click on disabled Rule.
6. Find Legacy SSO. Single click on it and on the right hand action pane, click on disabled Rule.

Can also be that you have enter the wrong URI for the gateway inside Cognos Configuration for Framework Manager.
Update Gateway URI to be https://caservername.domain.com:443/ibmcognos/bi/v1/disp
Save and try again.

More information:

http://www-01.ibm.com/support/docview.wss?uid=swg22000097

Product:
Cognos Analytics 10.0.12 Framework Manager
Microsoft Windows 2012 server

Problem:
Error when importing certificate file to cognos keystore with IKEYMAN.EXE.

You have setup SSL to the IIS server for the Cognos gateway. To be able to connect with client tools you import certs to cognos keystore.

Go to folder C:\Program Files (x86)\ibm\cognos\model\jre\bin
Click on IKEYMAN.EXE to start the program
Open the certificate store file from folder C:\Program Files (x86)\ibm\cognos\model\configuration\certs
Enter the password
Click Import to import your certificate file
https://www.ibm.com/support/knowledgecenter/SSD29G_2.0.0/com.ibm.swg.ba.cognos.tm1_inst.2.0.0.doc/t_pa_use_ibmkeymgmt.html

Error message:
An IO exception has occurred
DER input, integer tag error

Solution:
The format of the certificate is wrong, please try a pfx file instead.

Error message:
An IO exception has occurred
invalid keystore format

Solution:
Wrong format selected when you open the file, please try PKSC12 instead.

More information:
https://www-01.ibm.com/support/docview.wss?uid=swg21339658

Product:
Cognos Controller 10.3.1
CONTRL_version=CCR-AW64-ML-RTM-10.3.1100.216-0
CONTRL_name=IBM Cognos Controller
Microsoft Windows 2012 R2 Server
Microsoft SQL 2012 database server

Problem:
How setup a dedicated server that will only run the schedules consolidation jobs?

Suggested solution:
Install complete CA11 (Cognos Bi) on the main server, and get it working.
Install complete Cognos Controller 10.3.1 on the main server and get it working.
Instructions on how
https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=3&ved=2ahUKEwjQsKjir4XdAhUJOpoKHU2qCucQFjACegQICBAC&url=https%3A%2F%2Fwww-01.ibm.com%2Fsupport%2Fdocview.wss%3Fuid%3Dswg21608353%26aid%3D1&usg=AOvVaw2dMBi4aGy__1hcdEVBaXU6

On the secondary server, that should only do controller schedule jobs.
Install the prerequisite components like IIS and SQL drivers.
Download SQLNCLI from here https://www.microsoft.com/en-us/download/details.aspx?id=50402

Install main Cognos Controller 10.3.1 on this secondary server.
Copy the SQL driver sqljdbc42.jar file to folder c:\program files\ibm\cognos\ccr_64.
Configure Controller Configuration to have one database connection to your main controller database. This will create the DATA folder.
Copy the UDL files from the main controller server to the consolidation server in folder c:\program files\ibm\cognos\ccr_64\data.
Configure Controller Configuration to COM+ server setup, as of documentation.
Start the Batch Service in Controller Configuration.
Enter the url to the first server, as Report Server values;
Report server:
http://firstservername.domain.com/ibmcognos/bi/v1/disp
Dispatcher URI:
http://firstservername.domain.com:9300/p2pd/servlet/dispatch

Check that all the Cognos Controller services are installed.
Set IBM Cognos FAP Service and IBM Cognos Controller User Manager to Disabled.

controllerservices

Disable the IBM Cognos Controller Batch Service on the main controller server.
Check that IBM Cognos Controller Consolidation in Component Services is running when you do a scheduled consolidation.

If you do not have “IBM Cognos Controller User Manager” running on the same server where you have “IBM Cognos Controller Batch Service running”, then you can not schedule optimization of the Controller database – only schedule consolidation jobs.

Load balance as describe below, is not used in above setup;
http://www-01.ibm.com/support/docview.wss?uid=swg21677206

IBM Cognos Controller Web is manually installed in above picture, on this consolidation server. http://www-01.ibm.com/support/docview.wss?uid=swg22014043