To configure Essbase for encrypted (SSL) communication with Provider Services, you must perform a configuration task to enable the Essbase libcurl library to set up a secure channel to Provider Services. This is required to enable secure connections to be made between Essbase and Provider Services using logical Essbase cluster names.
Use the following configuration options to either disable peer verification, or provide the location of the certificate authority (CA) certificates.
To complete this configuration, set the following environment variables, using the operating system command line:
API_DISABLE_PEER_VERIFICATION=1
Set this variable if the connection goes through SSL, but does not need a certificate. Essbase provides data encryption, but not authentication.
If API_DISABLE_PEER_VERFICATION is not set, or is set to 0, you must set up a certificate. To establish a secure connection with Provider Services, Essbase requires a CA signing of a Provider Services certificate, to provide authentication for the Provider Services server. You can specify either a file or a directory which includes the certificate. Choose one of the following options:
API_CAINFO=CA certificate file path
or
API_CAPATH=directory path containing CA certificates
The environment variables described are only applied when logging with a Provider Services URL that starts with https. Logins with the http URL are directed through TCP/IP.