onGuard Permission Audit - Qlik Community

AnaSilva · ‎2026-03-10

onGuard Permission Audit

onGuard Permission Audit monitors user permission changes across a Qlik Cloud tenant in near real-time. Built for system administrators and compliance stakeholders, it detects role additions and removals across spaces, classifies changes by severity (Critical, High, Medium, Low), and maintains a timestamped change log for audit trail purposes. Used by PWCS to support governance reviews, access verification, and proactive security monitoring — replacing manual permission checks with an automated, always-current view of who has access to what.

Discoveries

Some of the discoveries from using this app include: permission changes that occurred without a formal access request, role discrepancies between users who should have equivalent access, and visibility into exactly when elevated permissions were granted or removed — detail that was previously unavailable without manual tenant reviews.

Impact

onGuard has shifted client's access governance from reactive to proactive, giving administrators and compliance stakeholders a live audit trail without manual effort. Permission anomalies that previously went undetected between formal reviews are now surfaced automatically and classified by severity.

Audience

Primary users are Qlik Cloud System Administrators and compliance stakeholders responsible for access governance. The app is accessed on-demand for audit reviews and permission verification, and is expected to be referenced regularly as part of ongoing security monitoring across the Qlik Cloud tenant.

Data and advanced analytics

onGuard sources its data directly from the Qlik Cloud tenant API, capturing space membership and role assignments across all users at each reload. Change detection is performed using hash-based delta comparison between reload cycles, with severity classification logic applied to categorize each permission event — enabling pattern analysis across users, spaces, and time.