topic Windows Authentication Popup while accessing Qlikview in QlikView

Windows Authentication Popup while accessing Qlikview

hirenjadiya — Mon, 26 Jan 2026 16:26:21 GMT

Hi,

We are using qlikview document, which is integrated into a JAVA Portal. So we are having 2 main servers over here -

1. Portal Server

2. Qlikview Server (Where the .qvw document is deployed)

Further, to inform that the single sign on is implemented using webticket.

Now, generally when user login on Portal, he/she can able to access the Qlikview document. However, sometime the user gets Windows Authentication Popup. (5/100 times)

On investigating the same we found that there is some issue with Cookies/Session. Please find the snapshot below. These snap-shots are taken from Client PC -

Cookie Snap-shot for Portal Server

Cookie Snap-shot for Qlikview Server

When we delete the incorrect cookie (marked in RED) the user wont get the Authentication Popup. However, when the incorrect cookie is not deleted and the user logs out and logs in again the Authentication Pop-up comes up.

I am not sure but what I believe is the incorrect cookie is set by calling QvAJAXZfc service (deployed on IIS on QlikView Server) from JAVA Portal.

Questions:

1. How can I avoid creation of incorrect cookie, OR

2. Is there any settings that I have to make on QEMC Server.

Re: Windows Authentication Popup while accessing Qlikview

Thu, 16 Apr 2015 20:15:30 GMT

It's possible you have Windows Authentication turned on in IIS on the QvAjaxZfc virtual folder. This is required if you are using windows authentication to authorize users to QlikView. If you are using web ticketing or http header injection for authorization, set windows Authentication to disabled and anonymous to enabled.

Here is a configuration document for IIS if using web ticketing or header injection.

Re: Windows Authentication Popup while accessing Qlikview

hirenjadiya — Thu, 16 Apr 2015 20:43:31 GMT

Hi Jeffrey,

Thanks for the quick response and detail document.

You are right, we have set the Windows Authentication turned on (Enabled) in IIS on the QvAjaxZfc and QlikView virtual folder. If I turned it to disable then we are unable to view QlikView application on portal.

Re: Windows Authentication Popup while accessing Qlikview

Thu, 16 Apr 2015 20:48:54 GMT

How do you have your webticket code formatted? Are you sending along client credentials to IIS? Have you whitelisted the server requesting a ticket from getWebTicket.aspx? Here is a sample webticket aspx page that you can evaluate against your code. Notice that if the whitelist is set up, default credentials do not need to be supplied to IIS because Windows Auth is disabled and Anonymous enabled.

It may help to watch this webinar as well: QVInPractice1_Authorization.mp4 - Google Drive

This page is for solution architects and integration architects implementing web ticketing in a QlikView 11.2 deployment.

Assumptions

You have added IIS to the Windows Server.
You have installed QlikView 11.2 with IIS components.
You know the ip addresses to add to the whitelist.

Instructions

On the server with QlikView web services installed, Navigate to %ProgramData%\QlikTech\WebServer.
Open the file named Config.XML in notepad or your favorite text editor.
Search for the tag labeled .
Change this tag from the above to .
In between the opening and closing tags, enter a <TrustedIP> tag. Enter an ip address and add a closing tag. The result appears like this:
After adding all of the appropriate trusted IP addresses, save the config.xml file and restart the QlikView Settings Service.

Re: Windows Authentication Popup while accessing Qlikview

hirenjadiya — Fri, 17 Apr 2015 17:27:49 GMT

Hi Jeffrey,

With your above solution -

1. Disable Windows Authentication

2. Enable Anonymous Authantication

3. Enter a <TrustedIP> tag under %ProgramData%\QlikTech\WebServer\Congig.XML

I was able to avoid the Windows Authantication Popup. But, I still get "Failed to authenticate" popup.

Is it because, I am manually deleting the AccessPointSession from Cookie to test the Windows Authentication?

Re: Windows Authentication Popup while accessing Qlikview

Fri, 17 Apr 2015 18:26:02 GMT

Hiren,

Now that you have set everything for anonymous and you have whitelisted the ip, I'd start by testing with the sample aspx page I attached earlier. You will need to change the ip address or hostname to obtain the webticket (QlikViewServerUrl variable) to your IIS server running Qlik web components. If that works, then it's possible that your cookie deletion code is now removing the accesspoint session cookie you need to stay authorized.

If you receive an error when using the attached aspx page, then there remains something amiss with the configuration.

Do you mind sharing your webticket code?

Re: Windows Authentication Popup while accessing Qlikview

hirenjadiya — Fri, 17 Apr 2015 18:40:58 GMT

Hi Jeffrey,

I believe the web ticket code is running good. I was getting the Windows Authentication popup only 5/100 times, 95% its running good.

I don't mind sharing but I don't have ownership of same.

What I observed is, if the portal is remain idle of 10~15 mins then the Windows Authentication popup was coming (earlier), now the Failed to authenticate.

Re: Windows Authentication Popup while accessing Qlikview

hirenjadiya — Fri, 17 Apr 2015 19:49:57 GMT

Hi Jeffrey,

I was able to extract the Webticket implementation from Portal Code. Please find below the pseudo code for same.

Step: 1

Webticket = http://<QLIKVIEWSERVERNAME>/QvAjaxZfc/GetWebTicket.aspx?cmd=<Global method='GetWebTicket'><UserId>QLIKVIEW_USER</UserId></Global>

Step: 2

Webticket = lcXb/KLvZ5trBTtwTxliVcqiZLCsPIKAcQFpSiwt

Step: 3

http://<QLIKVIEWSERVERNAME>/QvAJAXZfc/Authenticate.aspx?type=html&webticket=lcXb/KLvZ5trBTtwTxliVcqiZLCsPIKAcQFpSiwt&try=/QvAJAXZfc/opendoc.htm?document=QLIKVIEWDOCUMENT.qvw&back=

What I observed is, if the portal is remain idle of 10~15 mins then the Failed to authenticate Popup is coming and this happens when the 2nd AccessPointSession is created in Cookie under Qlikview Server.

Now, this 2nd AccessPointSession is created For QLIKVIEWSERVER. Is it possible to avoid creation of 2nd AccessPointSession?

Re: Windows Authentication Popup while accessing Qlikview

Fri, 17 Apr 2015 20:18:17 GMT

Is there content in the QlikView app or in the web page you are embedding Qlik content that may trigger windows auth? The only other thing I can think of is you have set a session timeout and for whatever reason because of the windows auth settings in IIS it prompted you.

I suspect the reason you are receiving an authenticate failure message is that you still have the equivalent lines of code in your web ticket request:

client.PreAuthenticate = true;

client.Credentials = new NetworkCredential(ticketinguser,ticketingpassword);

These lines are required if you are using windows authentication against the webticket code. You will notice the sample, the instructions I provided, and the video all remove these lines because you are trusting the requesting IP in the config.xml. The above lines are no longer required via the instructions I have provided.

Re: Windows Authentication Popup while accessing Qlikview

hirenjadiya — Tue, 21 Apr 2015 17:37:24 GMT

Thank you Jeffrey,

Just for everyone reference. In our particular case, we were not doing the session management properly that was the reason QlikView Server was creating a new session with new webticket (which was not valid for portal). That's, why we were getting "Fail to Authenticate" error.

Re: Windows Authentication Popup while accessing Qlikview

Sun, 26 Apr 2015 03:49:55 GMT

Hi,

I too have similar issue but differnt context.. To solve my issue , I thought of restricting the accesspoint login screebn, but to do so, I want to know that, " how to know if user has access to particular .qvw file on qlikview server using webticket?"

As of now, I am using below url to open any report/document(.qvw file)..

http://<Server>/QvAJAXZfc/Authenticate.aspx?type=html&webticket=<webticket>&try=http://<Server>/QvAJAXZfc/opendoc.htm?document=sample.qvw&host=<Host>@<Server>

All this, I am doing in Java based web application.

In nutshell, I want to know upfront that, if user has access to particular document using webticket before displaying the report.

Your ehlp is highly appreciable and indeed required for me.

Thanks,

Re: Windows Authentication Popup while accessing Qlikview

Mon, 27 Apr 2015 01:35:19 GMT

Ramesh,

When using web tickets you are using DMS. You control access to QlikView applications through the QlikView Management Console. You set named access on QlikView applications by setting up a directory service connection (DSC) containing the userids and groups for the host application you are using to authenticate before requesting the web ticket for authorization.

Please watch this webinar: Video Link : 1840

For an example of how to configure an ODBC directory service connection and the format for the tables/views for QlikView to read go here: Dropbox - QVConfigODBCDSP

Re: Windows Authentication Popup while accessing Qlikview

Anonymous — Tue, 07 Mar 2017 07:31:28 GMT

Hi can you post the answer again actually the label name not appearing here, tags in which between i want to keep the <trustedipp> address

regards,

narasimha

Re: Windows Authentication Popup while accessing Qlikview

hirenjadiya — Tue, 07 Mar 2017 19:41:47 GMT

Hi Narasimha,

Go through the below link, its around 1 hour webinar. I think its worth watching.

QVInPractice1_Authorization.mp4 - Google Drive‌

You can find the same link in Jeffrey Correct Answer

Regards,

Hiren Jadiya