topic After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this? in QlikView

After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Mon, 26 Jan 2026 18:19:17 GMT

As the question says, after installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Default login page (browser authentication) works as normal. Anyone get this? The only other manual change made after the upgrade was to tick on https on port 443.

Thanks

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Miguel_Angel_Baeyens — Tue, 11 Dec 2012 11:36:52 GMT

Hi,

If the certificate is self signed, you are likely to need to add the server to the trusted sites, or users will get a security error. Try with a different browser than IE, just in case, and make sure the Internet Options are not set to check certification valitidy.

Make sure as well that the certificate is linked to the computer according to Microsoft documentation.

Hope that helps.

Miguel

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Tue, 11 Dec 2012 13:41:27 GMT

The certificate is not self signed, its verified by a registered and widely used third party. Users can load the https: login page normally, the url bar is green etc. Once the landing page loads, they try DOMAIN\user, the screen flashes for a second and the login comes back up - no bad password or other errors. When an admin logs in the same way, it goes through and the access point with available dashboards loads normally.

I went through the Micrrosoft Document and I think we did all the steps correctly.

I have tried giving users more rights to the meta and shared qvws documents folder but that didnt help either.

Thanks for the assistance till now, if you can think of anything else I should do please add.

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Miguel_Angel_Baeyens — Tue, 11 Dec 2012 16:16:51 GMT

Hi,

Is there any chance that the proxy or firewall has different rules for admins than for users and hence the issue, not because the permissions but because the network settings?

Miguel

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Wed, 12 Dec 2012 11:23:43 GMT

The admins are in a different 'zone' to the normal users, but I asked our networks guys and they don't know of any different 'blocks' when it comes to networking through the website. They rechecked the https firewall and port blocking rules, and there is nothing to differentiate a user from an admin.

Please keep in mind that default auth. works for both users and admins, and only webform does not work for user. My first hunch would be that after we set up SR2 and the Certificate, users are trying to access a file or files only during webform login that they do not have rights to, anything I could check?

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Miguel_Angel_Baeyens — Fri, 14 Dec 2012 08:13:07 GMT

Hi,

Are users able to see the certificate in the certificates stores within IE or the browser they are using to get to the AccessPoint? I keep thinking on a permissions/network issue...

I would check the server executable files and DLL:s in C:\Program Files\QlikViewServer\Server for the QlikView part and in the IIS console from the Windows part...

Miguel

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Fri, 25 Jan 2013 12:08:17 GMT

Hi Miguel,

Thanks for your help and your assistance. We have upgraded to ver 11643, but the problem still exists. It is very baffling as to why the problem is restricted to only webform and non-admins. We have checked and tested several theories like adding users to folder rights etc, but nothing unlocked the issue yet. The users can see the certificate and its accepted and normal. The only variant to the problem so far is that in Chrome, users do not get the 'login error' popup but only a blank screen stuck on the authenticate.aspx page. Any hints?

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Wed, 06 Feb 2013 08:51:28 GMT

Hi,

Have you solved the problem? We are facing the same problem as you. And our current setup is quite similar to yours as well (HTTPS) but we are using 3 servers (QVWS, QVS and Publisher).

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Wed, 06 Feb 2013 10:38:42 GMT

Hi,

No we are still same, tried again after applying the latest security patch for QV11SR2 (v11643). It is still a mystery why only admins can login through webform, but everyone else can go in through with browser authentication. Just to add, obviously we are using DMS authorization (QlikView controls file access) not NTFS.I am hoping this gets picked up somehow and I will post here if it does.

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Bill_Britt — Wed, 06 Feb 2013 13:32:01 GMT

I guess I would ask why are you using the Alternate Login page? Why are you not allowing the OS handle the login?

Bill

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Wed, 06 Feb 2013 13:41:08 GMT

It is not essential, true, but we have always had a landing page, with our logo, disclaimer and terms of use. Also the pop up login does not fuction the same way for all browsers, for example we had issues with IE9 (would prompt the login twice) and on the ipad. Laslty for some reason we are not sure yet, if you go through the pop up login the 'logout' link disappears when the access point page loads.

Laslty its because I have to explain why the patch is making us change the login page, and saying 'cause it seems that in our case its not working, I can't point to a reason' is not easily accepted by the systems guys, and that's mainly why I am asking here. Eventually if this remains unanswered we will probably go to the popup login option.

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Thu, 07 Feb 2013 02:25:15 GMT

Same here. The reason why we are using the alternate login page is to get the logout link.

Note: We are using NTFS/NTLM instead of DMS.

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Tue, 12 Feb 2013 15:11:18 GMT

Could it be that the QV server is authenticating against the server itselft and not Active Directory? So, it only allows administrators and not the rest of the users?

Also, do we need to change anything in code for the QV server to authenticate using AD? The path for the AD server has been set in the settings already.

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Thu, 28 Feb 2013 09:31:01 GMT

I have the same issue here. QV11SR2, QlikView Webserver, no https, AD for authentication.

If the web server authentication is set to Default login page (browser authentication), everybody who has a CAL assigned is automatically logged in and can see the QV Apps which the user is allowed to see (section access).

If authentication is changed to Alternate login page (web form) only users which are in the group Administrators on the QlikView server can log in (with DOMAIN\userid as user name).

Other users don't see any error message, they come straight back to the login page.

In the webserver's log files I see this:

Information	Login: DOMAIN\userid failed.
Error	Request failed: This operation cannot be performed after the response has been submitted.

No difference if you use chrome or IE.

So this is really awkward - because there are absolutely no problems using browser authentication but if the same (non admin) users use the login page the authentication fails.

Any ideas?

Thanks

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Bill_Britt — Thu, 28 Feb 2013 13:39:26 GMT

The feature you are trying to use isn't for Windows authentication. It is for Customer Users feature. If you look at section 23 of the QVS reference manual.

Bill

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Thu, 28 Feb 2013 13:53:54 GMT

Hi Bill,

I don't really understand your answer. What does section 23 (Edit Script Dialog) have to do with our problem?

Vagos

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Bill_Britt — Thu, 28 Feb 2013 14:13:03 GMT

Check out the attached reference manual.

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Thu, 28 Feb 2013 15:05:27 GMT

Hi Bill,

Thanks for your reply.

In the latest Reference Manual, the section is section 26 (Configuring Microsoft IIS for Custom Users).

Maybe that's why Vagos didn't find it.

As far as I understand, section 23 (26) covers the authentication in IIS with custom users.

This is not what I'm looking for (I'm using the QV Webserver and AD-user).

I want users to manual authenticate themselves, not automatically via Browser Authentication and the Windows credentials of the currently logged in user on the workstation.

So it has to be possible to log out from the Access Point and log in with a different UserID than the one I'm logged in on the workstation.

As long as I use the option Default login page (browser authentication) every user (who has a CAL) instantly sees the Access Point - authenticated with the Windows(AD) user credentials the workstation uses. No login required.

If I use the option Alternate login page (web form) users which want to access QlikView get redirected to the given QV-Login form (basically what I want to achieve).

And now there are two (unwanted) scenarios.

Every user who is in the Administration Group of the QV Server can log on using his AD-credentials.

But every user who isn't can't.

I just want that users can log into QV with a different userID than the one which the workstation is logged in.

For example: I log into Workstation A with userID XX, but for QlikView I want to use userID YY.

Matt

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Bill_Britt — Thu, 28 Feb 2013 15:16:56 GMT

You will need to write your own SSO system to do this. With either passing the Header information or using GetTicket.

Bill

Re: After installing QV11SR2 and https certificate, alternate login page (web form) only allows server admins. Anyone get this?

Thu, 28 Feb 2013 15:27:26 GMT

Thanks.

So I understand that as long as I use the QV Webserver and not IIS, the automatic authentication is the only practical option?

I guess I was just confused because as long as the user was in the Administrators group everything worked as I expected.

Regards,

Matt