Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Anonymous
Not applicable
‎2016-10-25 07:41 PM

Which wins, user access or login access rule?

In Qlik Sense 3.1 I have rules created such that if a user is a member of one Active Directory security group, they are granted a login access token, if they are a member of another group, they are granted a user access token. What happens if they're a member of both groups?

1,230 Views
1 Solution

Accepted Solutions
Anonymous
Not applicable
‎2016-10-31 05:20 PM
Author

Support responded User access token will try first, if none available, Login access token will be granted.

View solution in original post

698 Views
0 Likes
3 Replies
Anonymous
Not applicable
‎2016-10-31 05:20 PM
Author

Support responded User access token will try first, if none available, Login access token will be granted.

699 Views
0 Likes
vlad_komarov
Partner - Specialist III
Partner - Specialist III
‎2016-11-01 11:57 AM

Jordan,

Do you have any document/references how to create these rules (allocating tokens, etc) for different group of users?

I need to create similar rules and I did not find a straightforward information about it.

It's not very clear for me if I can wildcards options for user names, create user Roles or Custom User's Properties automatically, apply allocations based on these Roles, use a mix of AD and UDC accounts, etc.

Please let me know.

Regards,

Vlad

698 Views
0 Likes
Anonymous
Not applicable
‎2016-11-01 02:07 PM
Author

In response to vlad_komarov

I can comment on the first part of your question which is yes, it's probably easier than you think to allocate tokens for different groups. Assuming you want to use Active Directory security groups as I am, first thing you want to ensure is working is your User Directory Connector sync. If it is, then the QMC will be 'aware' of your existing security groups. Then

  1. go to your QMC
  2. Click License and tokens
  3. Click User access rules on the right side
  4. Click Create new on the bottom
  5. Give it a Name, Description, then in the Basic section, in order select User, Group=value and paste in the name of your AD Security Group in the last field

If there are enough available tokens, this rule will ensure users in that group are granted a User access token.

You can follow similar steps for creating a Login access rules. The only real difference is you need to designate a number of tokens from which users can draw down.

Hope that helps.

698 Views
0 Likes