Skip to main content
Announcements
Qlik Community Office Hours, March 20th. Former Talend Community users, ask your questions live. SIGN UP
cancel
Showing results for 
Search instead for 
Did you mean: 
Not applicable

Problem with Single Sign On

Hello all,

I am new to Qlikview and I am trying to do a SSO configuration with my portal(Apache Webserver and Shibboleth SAML).

Approach I am using is below

1.User will make request to local apache server https://localhost/qlikview

2. As this url is configured as secure resource at Shibboleth Service Provider, it will redirect the request to Shibboleth Identity      Provider for authentication.

3. Identity  Provider authenticates the user (configured in our Active directory)and sets header attribute in response and pass it to Service Provider sitting on apache.

4. Apache will redirect the user to qlikview through reverse proxy (configured in apache httpd.conf)

.5. Qlikview will find the correct header and allow user to access the resource.

Below is the configuration I have made at my Qlikview server end.

    1. I am changing the authentication type from NTLM to Header . As in my portal end I am using Header injection for authentication         and not NTLM.

     2. As of security wise I have tried both NTFS and DMS authorization but no luck.

Below are the changes I have done in my httpd.conf file in Apache

SSLProxyEngine on

ProxyPass /qlikview http://serverIP/qlikview

ProxyPassReverse /qlikview http://serverIP/qlikview

ProxyPass /QvAJAXZfc http://serverIP/QvAJAXZfc

ProxyPassReverse /QvAJAXZfc http://serverIP/QvAJAXZfc

ProxyPass /QvAjaxZfc http://serverIP/QvAJAXZfc

ProxyPassReverse /QvAjaxZfc http://serverIP/QvAJAXZfc

Now when user logs into the portal and tries to access the qlikview server, user does not get redirected to the Qlikview url.

I have also followed the official Qlikview SSO guide formerly known(Qlikview 10 Accesspoint SSO.pdf) but nothing seems to be working.

If anyone can provide me guidance on how to configure Qlickview, what header params should be injected and anything i need to add at my active directory side would be of great help for me.

Please help me to resolve this problem

Thanks!!!

1 Reply
simospa
Partner - Specialist
Partner - Specialist

Hi Abhishek,

did you get an answer for it?

I need to know if Shibboleth can be used as Third-party security for QV Server Enterprise Edition...

Thanks... 🙂

S.