SAML attribute Mapping in Qlik Sense

LTIAT95 · ‎2022-02-18

Hello Experts,

I'm new to Qlik Sense SAML attribute mapping.

I have SSO configured between Oracle Access manager (OAM) and Qlik Sense. We also have AD configured to Qlik Sense.

Now My Question is,

Do I still need AD in Qlik Sense or OAM SSO Can handle the Authentication and Authorization both?

We have Custom attribute coming in SAML , How can i use those SAML attributes to allow user access using security rules or implement section access with in Qlik Sense.

We have Nov 2020 patch 15 Qlik Sense Server.

Please let me know if you need any other information to answer my questions.

Thanks in Advance!

Damien_Villaret · ‎2022-02-24

Hello @LTIAT95

Yes, you can use SAML attributes passed in the SAML response to handle authorization, by creating security rules based on those attributes.

Please see:

https://community.qlik.com/t5/Knowledge/Qlik-Sense-What-are-SAML-attributes/ta-p/1717415

https://community.qlik.com/t5/Knowledge/Security-Rules-Fail-For-SSO-SAML-Users-and-The-Group-or-Othe...

However, if you are running a version lower than November 2021, you have no way to audit/see those attributes in the QMC, and you will have to rely on the proxy logs set on DEBUG mode, in case something is not working as expected and you need to troubleshoot it (details are also in the above article)

In November 2021 and higher, you have a checkbox in the virtual proxy settings to persists those attributes and you can view/audit them directly in the QMC.

If the issue is solved please mark the answer with Accept as Solution.

Client Managed

Integration