Unlock a world of possibilities! Login now and discover the exclusive benefits awaiting you.
If I'm recovering a Qlik Sense site to a machine with a different hostname, why do I need to recover the certificate before installing qlik?
Hello @qlikalex,
Please review this link: Verify/Execute Backups - qs-admin-playbook (qlik-poc.com)
"Certificates
When Qlik Sense Enterprise was designed, security against eavesdropping was built in by using certificates which Qlik generates to encrypt all traffic between services. This communication is encrypted no matter if the communication is self-contained to a single server or distributed across multiple nodes in a cluster. These certificates likewise are used to encrypt sensitive data which is stored in PostgreSQL (e.g. passwords to data connections). Due to this, the original certificates in a Qlik site are key seamless recovery. Without the availabity of these certificates the site can be recovered but at a consequence of needing to re-enter passwords, re-distribute certificates to other members of the Qlik Sense cluster, as well as replacement of certificates used in integration points like Web Ticketing using the Qlik Proxy API, automation tasks using the Qlik Repository API, or visualization integrations using the Qlik Engine API."
Cheers,
Albert
Because I found out that the certificate was not restored after I installed it
And I don't know if it will have an impact on my subsequent restoration
Is anyone said that you require certificate?
If not, try to redistribute all your consumer nodes again after your site restored to other host and generate new certificate, and one thing you have to make sure to avoid 400 or 500 error (Make sure, you have added new thumbprint certificate security key updated in QMC proxies).
Hello @qlikalex,
Please review this link: Verify/Execute Backups - qs-admin-playbook (qlik-poc.com)
"Certificates
When Qlik Sense Enterprise was designed, security against eavesdropping was built in by using certificates which Qlik generates to encrypt all traffic between services. This communication is encrypted no matter if the communication is self-contained to a single server or distributed across multiple nodes in a cluster. These certificates likewise are used to encrypt sensitive data which is stored in PostgreSQL (e.g. passwords to data connections). Due to this, the original certificates in a Qlik site are key seamless recovery. Without the availabity of these certificates the site can be recovered but at a consequence of needing to re-enter passwords, re-distribute certificates to other members of the Qlik Sense cluster, as well as replacement of certificates used in integration points like Web Ticketing using the Qlik Proxy API, automation tasks using the Qlik Repository API, or visualization integrations using the Qlik Engine API."
Cheers,
Albert