We want to invite external users to our tenant and as we have an IDp already we can't send email invitations, the problem is that I don't know how to use the IDp that we have:
I am attaching an image of the IDp, Can someone help me how to use it?
What you have done is a good start but now you have to create a web app that will authenticate your external users who will then be passed from your web app to your Qlik tenant. The JWT configuration you showed is a token based authentcation method that allows your web app to tell qlik who a user is and by trust relationship Qlik will believeve it and if that user has permission to do stuff they will be allowed to do those things.
It seems to me you may be more interested in federated authentication through your microsoft identity provider which will be more secure and less custom coded.
We have a Microsoft identity provider that we use for user inside the company, but now we want to invite some external users, to be honest I am very lost here, but with your comment do you mean to create another Microsoft identity provider? And the domain is the external user?
If you can elaborate on your solution (federated authentication through your microsoft identity provider) I will really appreciate.
JWT is meant for programmatic access. You would have to check what is the process within your portal to create one user.
Also, please confirm you are Tenant Admin, in order to invite users. Since your JWT IdP is not interactive, it should not prevent you from inviting users from the console, as long as you have the right roles.
Live and Breathe Qlik & AWS. Follow me on my LinkedIn | Know IPC Global at ipc-global.com
Are external users part of IDP that you have setup for qlik sense? If not then you cant use this IDP for external users. Also in Qlikcloud, you cant use multiple Idp at same time.
As other suggested what you are probably looking for is probably Identity federation. Check out below support article.
