Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Join us at Qlik Connect 2026 in Orlando, April 13–15: Register Here!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
JMAROUF
Creator II
Creator II
‎2025-05-26 02:42 PM

HTTP header information disclosure on Qlik Sense entreprise

Hello everyone,

During a recent security audit, a test was performed using Burp Suite by sending requests to our Qlik Sense server. The response headers revealed information such as:

Server: Microsoft-HTTPAPI/2.0
WWW-Authenticate: NTLM


What is the best way to configure Qlik Sense (or the underlying web server) to suppress or modify HTTP response headers like Server and X-Powered-By?

Any guidance on whether this should be done ? Note that there is no virtual proxy configured, except for the default one."

Thanks in advance!

 

Labels (2)
Labels
636 Views
1 Solution

Accepted Solutions
David_Friend
Support
Support
‎2025-05-27 02:15 PM

@JMAROUF see if this helps:

https://community.qlik.com/t5/Official-Support-Articles/Disabling-Server-Header/ta-p/1716182

If this helps please click on 'accept as solution' button!

View solution in original post

596 Views
0 Likes
2 Replies
David_Friend
Support
Support
‎2025-05-27 02:15 PM

@JMAROUF see if this helps:

https://community.qlik.com/t5/Official-Support-Articles/Disabling-Server-Header/ta-p/1716182

If this helps please click on 'accept as solution' button!

597 Views
0 Likes