https://community.qlik.com/t5/Official-Support-Articles/Export-client-certificate-and-root-certificate-to-make-API-calls/ta-p/1715515 <P>There are mainly 2 ways to call a Qlik Sense API:</P> <UL> <LI>By going through the Qlik Sense Proxy service on port 443 (https) or 80 (http) and authenticate to the proxy with the authentication method set up in the virtual proxy settings.</LI> <LI>Making a direct call to the service that you want to make an API call to (On port 4242 for example for Qlik Repository service) and use the client certificate to authenticate. In this case, the client certificate must be imported for the user logged in on the machine from where the API call is made.</LI> </UL> <P><BR /><I>* Ports mentioned above are default ports in a Qlik Sense installation but can be customized in each service settings.</I></P> <P>&nbsp;</P> <H3>Resolution:</H3> <P>&nbsp;</P> <P>Do the following:</P> <OL> <LI> <P>Select Certificates on the QMC&nbsp;start page (Last option in the blue section). The Export page for Certificates is displayed.<BR /><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="1.png" style="width: 999px;"><img src="https://community.qlik.com/t5/image/serverpage/image-id/57009i21C519E81CAF3EAB/image-size/large?v=v2&amp;px=999" role="button" title="1.png" alt="1.png" /></span></P> </LI> <LI>In the Machine name box, type the full computer name of the computer that you are creating the certificates for: MYMACHINE.mydomain.com or the IP address.</LI> <LI>Password is optional</LI> <LI>Select<STRONG> Include secret key</STRONG></LI> <LI>Select file format in the Export file format for certificates drop-down list. <STRONG>Windows format</STRONG> if the machine you are exported for is a Windows operating system.</LI> <LI>Click "Export certificates"</LI> <LI>Copy the client certificate (client.pfx) and root.cer from&nbsp;C:\ProgramData\Qlik\Sense\Repository\Exported Certificates\{MYMACHINE.mydomain.com}</LI> <LI>On&nbsp;MYMACHINE.mydomain.com, double-click <STRONG>client.pfx</STRONG> and choose to install it in the current user<STRONG> personal </STRONG>store.</LI> <LI>On&nbsp;MYMACHINE.mydomain.com, double-click<STRONG> root.cer</STRONG> and choose to install it in the <STRONG>Trusted Root Certification Authorities</STRONG>&nbsp;store.</LI> </OL> <P>See&nbsp;<A href="https://community.qlik.com/t5/Qlik-Support-Knowledge-Base/QRS-API-using-Xrfkey-header-in-Postman-Chrome-Extension/ta-p/1714661" target="_blank" rel="noopener">QRS API using Xrfkey header in Postman</A>&nbsp;for procedure on how to make API calls with Postman using client certificates. &nbsp;</P> Thu, 17 Jun 2021 14:44:45 GMT Damien_V 2021-06-17T14:44:45Z https://community.qlik.com/t5/Official-Support-Articles/Export-client-certificate-and-root-certificate-to-make-API-calls/ta-p/1715515 <P>There are mainly 2 ways to call a Qlik Sense API:</P> <UL> <LI>By going through the Qlik Sense Proxy service on port 443 (https) or 80 (http) and authenticate to the proxy with the authentication method set up in the virtual proxy settings.</LI> <LI>Making a direct call to the service that you want to make an API call to (On port 4242 for example for Qlik Repository service) and use the client certificate to authenticate. In this case, the client certificate must be imported for the user logged in on the machine from where the API call is made.</LI> </UL> <P><BR /><I>* Ports mentioned above are default ports in a Qlik Sense installation but can be customized in each service settings.</I></P> <P>&nbsp;</P> <H3>Resolution:</H3> <P>&nbsp;</P> <P>Do the following:</P> <OL> <LI> <P>Select Certificates on the QMC&nbsp;start page (Last option in the blue section). The Export page for Certificates is displayed.<BR /><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="1.png" style="width: 999px;"><img src="https://community.qlik.com/t5/image/serverpage/image-id/57009i21C519E81CAF3EAB/image-size/large?v=v2&amp;px=999" role="button" title="1.png" alt="1.png" /></span></P> </LI> <LI>In the Machine name box, type the full computer name of the computer that you are creating the certificates for: MYMACHINE.mydomain.com or the IP address.</LI> <LI>Password is optional</LI> <LI>Select<STRONG> Include secret key</STRONG></LI> <LI>Select file format in the Export file format for certificates drop-down list. <STRONG>Windows format</STRONG> if the machine you are exported for is a Windows operating system.</LI> <LI>Click "Export certificates"</LI> <LI>Copy the client certificate (client.pfx) and root.cer from&nbsp;C:\ProgramData\Qlik\Sense\Repository\Exported Certificates\{MYMACHINE.mydomain.com}</LI> <LI>On&nbsp;MYMACHINE.mydomain.com, double-click <STRONG>client.pfx</STRONG> and choose to install it in the current user<STRONG> personal </STRONG>store.</LI> <LI>On&nbsp;MYMACHINE.mydomain.com, double-click<STRONG> root.cer</STRONG> and choose to install it in the <STRONG>Trusted Root Certification Authorities</STRONG>&nbsp;store.</LI> </OL> <P>See&nbsp;<A href="https://community.qlik.com/t5/Qlik-Support-Knowledge-Base/QRS-API-using-Xrfkey-header-in-Postman-Chrome-Extension/ta-p/1714661" target="_blank" rel="noopener">QRS API using Xrfkey header in Postman</A>&nbsp;for procedure on how to make API calls with Postman using client certificates. &nbsp;</P> Thu, 17 Jun 2021 14:44:45 GMT https://community.qlik.com/t5/Official-Support-Articles/Export-client-certificate-and-root-certificate-to-make-API-calls/ta-p/1715515 Damien_V 2021-06-17T14:44:45Z