https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284368#M7072 <HTML><HEAD></HEAD><BODY><P>That did the trick. Sessions are working now for me. Thanks!</P><P></P><P>Of course the placeholder value I had in there while I was just trying to get the basics to work was the thing causing it not to. I hadn't seen that article and was just putting in something random figuring pretty much anything was acceptable as long as they matched. </P><P></P><P>For anyone curious, I did also need to add in this line after the cert validation callback to get it to work fully:</P><P><BR />ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls</P></BODY></HTML> Thu, 23 Feb 2017 00:48:35 GMT Anonymous 2017-02-23T00:48:35Z https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284364#M7068 <HTML><HEAD></HEAD><BODY><P>I've been banging my head on this and hoping to get some assistance with getting single sign on working using the Session API.</P><P></P><P>Essentially it appears that my certificates load successfully but I get an immediate 403 as soon as the call is made with no additional data. I have reviewed the logs on the Qlik server but haven't found anything has helped me yet to determine the problem.</P><P></P><P>I am using the QlikClient cert in my local store which includes the private keys - I have ensure my asp.net application pool identity has access to the cert.</P><P></P><P>Below is my code (C#) which I built following the tutorials and code samples here:</P><P style="padding-left: 30px;"></P><P style="padding-left: 30px;">ASP.NET Session Tutorial</P><P style="padding-left: 30px;"><A href="https://drive.google.com/file/d/0BxBEVQthCb29b3l1ME1SQXpkZkU/view">https://drive.google.com/file/d/0BxBEVQthCb29b3l1ME1SQXpkZkU/view</A></P><P style="padding-left: 30px;"></P><P style="padding-left: 30px;">IIS Configuration Tutorial</P><P style="padding-left: 30px;"><A href="https://drive.google.com/file/d/0BxBEVQthCb29ek52R2pCZ3ZOX00/view" style="font-size: 10pt;">https://drive.google.com/file/d/0BxBEVQthCb29ek52R2pCZ3ZOX00/view</A></P><P style="padding-left: 30px;"></P><P style="padding-left: 30px;">Code Samples</P><P style="padding-left: 30px;"><A href="http://branch.qlik.com/#!/project/56728f52d1e497241ae69864">http://branch.qlik.com/#!/project/56728f52d1e497241ae69864</A></P><P></P><P>I have read and re-read the docs on the forums and support pages but with no luck.</P><P></P><PRE __default_attr="c#" __jive_macro_name="code" class="jive_macro_code _jivemacro_uid_14871929595371201 jive_text_macro" jivemacro_uid="_14871929595371201"> <P>public class QlikAuthenticationService</P> <P>&nbsp;&nbsp;&nbsp; {&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; public Result&lt;string&gt; StartQlikSession(QlikUserAccessInformation access, string aspnetSessionID)</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; var result = new Result&lt;string&gt;();</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; var certificate = LoadQlikCertificate(access.ClientCertificateName);</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; result += certificate;</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; if (certificate.Success)</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; try</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; // ensure handling of self signed certs</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ServicePointManager.ServerCertificateValidationCallback = delegate { return true; };</P> <P></P> <P></P> <P><SPAN>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; // establish url (ie </SPAN><A class="jive-link-external-small" href="https://reports.domain.com:4243/qps/test/session" rel="nofollow" target="_blank">https://reports.domain.com:4243/qps/test/session</A><SPAN>)</SPAN></P> <P><SPAN>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; string url = $"</SPAN><A _jive_internal="true" href="https://community.qlik.com/" rel="nofollow" target="_blank">https://</A><SPAN>{access.ServerDomain}:{access.ServerPort}/qps/{access.VirtualProxyName}/session";</SPAN></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; string xrfKey = "ZYX_random_string_132456";</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; string body = $"{{ 'UserId': '{access.UserID}', 'UserDirectory':'{access.UserDirectory}', 'Attributes': [], 'SessionId':'{aspnetSessionID}' }}";</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; byte[] bodyBytes = Encoding.UTF8.GetBytes(body);</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; HttpWebRequest request = (HttpWebRequest)WebRequest.Create(url + "?Xrfkey=" + xrfKey);</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; request.ClientCertificates.Add(certificate.Value);</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; request.Method = "POST";</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; request.Accept = "application/json";</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; request.Headers.Add("X-Qlik-Xrfkey", xrfKey);</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; request.ContentType = "application/json";</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; request.ContentLength = bodyBytes.Length;</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Stream requestStream = request.GetRequestStream();</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; requestStream.Write(bodyBytes, 0, bodyBytes.Length);</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; requestStream.Close();</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; HttpWebResponse response = (HttpWebResponse)request.GetResponse();</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Stream stream = response.GetResponseStream();</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; if (stream != null) result.Value = new StreamReader(stream).ReadToEnd();</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; catch (Exception exc)</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; result.AddException(exc, this, "Unable to start Qlik session.");</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; return result;</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; public Result&lt;X509Certificate2&gt; LoadQlikCertificate(string certificateName)</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Result&lt;X509Certificate2&gt; result = new Result&lt;X509Certificate2&gt;();</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; try</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; X509Store store = new X509Store(StoreName.My, StoreLocation.LocalMachine);</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; store.Open(OpenFlags.ReadOnly);</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; var certificates = store.Certificates.Cast&lt;X509Certificate2&gt;();</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; if (certificates != null &amp;&amp; certificates.Count() &gt; 0)</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; var certificate = certificates.FirstOrDefault(c =&gt; c.FriendlyName == certificateName);</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; if (certificate != null)</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; result.Value = certificate;</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; else</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; result.AddFailure(Results.Reports.QLIK_ACCESS_FAILURE, "Unable to connect to Qlik Reporting server.", this, $"No {certificateName} certificate found in store");</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; else</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; result.AddFailure(Results.Reports.QLIK_ACCESS_FAILURE, "Unable to connect to Qlik Reporting server.", this, "No certificates found in store");</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; catch (Exception exc)</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; result.AddException(exc, this, "Unable to load Qlik client certificate.");</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; return result;</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; }</P> <P>&nbsp;&nbsp;&nbsp; }</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp; public class QlikUserAccessInformation</P> <P>&nbsp;&nbsp;&nbsp; {</P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; public string ServerDomain { get; set; } = "reports.domain.com";</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; public int ServerPort { get; set; } = 4243;</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; public string VirtualProxyName { get; set; } = "test";</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; public string ClientCertificateName { get; set; } = "QlikClient";</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; public string UserDirectory { get; set; } = "QLIK-SENSE";</P> <P></P> <P></P> <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; public string UserID { get; set; } = "MyUsername";</P> <P>&nbsp;&nbsp;&nbsp; }</P> </PRE><P></P><P>Below is my Qlik Sense Virtual Proxy Configuration:</P><P></P><P><IMG __jive_id="153262" alt="2017-02-15 13_03_17-Edit virtual proxy - QMC.png" class="jive-image image-1" src="/legacyfs/online/153262_2017-02-15 13_03_17-Edit virtual proxy - QMC.png" style="height: 652px; width: 620px;" /></P><P><IMG __jive_id="153272" alt="2017-02-15 13_03_17-Edit virtual proxy - QMC - 2.png" class="jive-image image-2" src="/legacyfs/online/153272_2017-02-15 13_03_17-Edit virtual proxy - QMC - 2.png" style="height: 279px; width: 620px;" /></P><P>In the above configuration, I have replaced my actual domain name with "domain.com". The Qlik server is at reports.domain.com and my ASP.NET application is at dev.dashboard.domain.com (which I have mapped to local host using a hosts mapping on my machine). The IPs in the whitelist are my networks public IP address and the servers IP address.</P><P></P><P>One final note - I have attempted to set this up using PostMan as well, however I am always getting a 403 Forbidden but with this error message: XSRF prevention check failed. Possible XSRF discovered. I am passing the XSRF header/url param in PostMan as well.</P></BODY></HTML> Wed, 15 Feb 2017 21:21:35 GMT https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284364#M7068 Anonymous 2017-02-15T21:21:35Z https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284365#M7069 <HTML><HEAD></HEAD><BODY><P>No one has any thoughts on this? Any help would be appreciated.</P><P></P><P>Thanks!</P></BODY></HTML> Wed, 22 Feb 2017 02:17:21 GMT https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284365#M7069 Anonymous 2017-02-22T02:17:21Z https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284366#M7070 <HTML><HEAD></HEAD><BODY><P>Hey Nate,</P><P></P><P>"The only characters that are allowed for use in the <SPAN class="Code" style="font-family: Monaco, Menlo, Consolas, 'Courier New', monospace; font-size: 12px;">Xrfkey</SPAN> parameter are 0 - 9, a - z, and A - Z."</P><P><A href="http://help.qlik.com/en-US/sense-developer/3.2/Subsystems/RepositoryServiceAPI/Content/RepositoryServiceAPI/RepositoryServiceAPI-Connect-API-Using-Xrfkey-Headers.htm" title="http://help.qlik.com/en-US/sense-developer/3.2/Subsystems/RepositoryServiceAPI/Content/RepositoryServiceAPI/RepositoryServiceAPI-Connect-API-Using-Xrfkey-Headers.htm">Using Xrfkey headers ‒ Qlik Sense</A></P><P></P><P>Try dropping the _ in your xrf key</P></BODY></HTML> Wed, 22 Feb 2017 16:09:12 GMT https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284366#M7070 Alexander_Thor 2017-02-22T16:09:12Z https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284367#M7071 <HTML><HEAD></HEAD><BODY><P>Thanks - will give this a try.</P></BODY></HTML> Wed, 22 Feb 2017 22:14:58 GMT https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284367#M7071 Anonymous 2017-02-22T22:14:58Z https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284368#M7072 <HTML><HEAD></HEAD><BODY><P>That did the trick. Sessions are working now for me. Thanks!</P><P></P><P>Of course the placeholder value I had in there while I was just trying to get the basics to work was the thing causing it not to. I hadn't seen that article and was just putting in something random figuring pretty much anything was acceptable as long as they matched. </P><P></P><P>For anyone curious, I did also need to add in this line after the cert validation callback to get it to work fully:</P><P><BR />ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls</P></BODY></HTML> Thu, 23 Feb 2017 00:48:35 GMT https://community.qlik.com/t5/Integration-Extension-APIs/403-Forbidden-Session-API-Failure/m-p/1284368#M7072 Anonymous 2017-02-23T00:48:35Z