Skip to main content
Announcements
Join us at Qlik Connect for 3 magical days of learning, networking,and inspiration! REGISTER TODAY and save!
cancel
Showing results for 
Search instead for 
Did you mean: 
ilanbaruch
Specialist
Specialist

QlikSense SF Saml integration

hi all

when generating SP metadata file in the virtual proxie created, i retrieve below values : 

WantAssertionsSigned="true" AuthnRequestsSigned="true"

as i understand both should be "false" to enable SSO

when longing in recieve an error as below

400.jpg 

why are they created as true ? and how can i change it ?

is in the creation of the IdP file in SF ?

any ideas ?

advanced thanks

Labels (2)
1 Reply
Damien_V
Support
Support

Hello,

You do not need to change these for the SAML authentication to work.

In fact, even if you change them, it will be ignored by Qlik Sense, as Qlik Sense only supports signed SAML AuthnRequests.

 

As error 400 is a generic error, which just means that the SAML response sent by the IdP (Salesforce in this case) did not contain the correct information, it is hard to say what went wrong here.

If you look into the Qlik Sense Proxy Audit trace logs (C:\programdata\qlik\sense\logs\proxy\trace\servername_audit_proxy.txt), you should see a warning indicating what went wrong.

Once you found the error, you can search in our knowledge base if there is a resolution for it:
https://support.qlik.com/apex/QS_CoveoSearch#q=SAML&t=All&sort=relevancy

If you cannot find anything there, please provide the information in the article below so that I can take a look:

https://support.qlik.com/articles/000041558

 

If the issue is solved please mark the answer with Accept as Solution.