Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Live today at 11 AM ET. Get your questions about Qlik Connect answered, or just listen in. SIGN UP NOW
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Martin22
Partner - Contributor III
Partner - Contributor III
‎2021-09-16 03:11 AM

What certificate is needed for enabling SAML authentication?

Hi,

I'm currently trying to implement SAML authentication on our Qlik Sense dev platform.

So I followed the steps described in the Knowledge Base, but I encountered difficulties on the SAML signing algorithm : I need to implement the SHA-256, which requires a certificate, but I can't find what certificate is needed, or where to upload it.

Can somebody help me on this ?

Best regards,

Martin.

960 Views
0 Likes
1 Solution

Accepted Solutions
Damien_Villaret
Support
Support
‎2021-09-16 06:08 AM

Hello @Martin22 

The SP certificate used for SAML is the same as the one applied on the Qlik Proxy service

https://community.qlik.com/t5/Knowledge/How-to-change-the-certificate-used-by-the-Qlik-Sense-Proxy-t...

 

When it comes to SHA-256 with SAML, this certificate's private key cryptographic provider needs to be specifically "Microsoft Enhanced RSA and AES Cryptographic Provider"

https://community.qlik.com/t5/Knowledge/SHA-256-and-Converting-the-Cryptographic-Service-Provider-Ty...

 

Hope that helps.

If the issue is solved please mark the answer with Accept as Solution.

View solution in original post

921 Views
0 Likes
4 Replies
Maria_Halley
Support
Support
‎2021-09-16 06:01 AM

@Martin22 

I will move this to the integration board instead.

 

931 Views
0 Likes
Damien_Villaret
Support
Support
‎2021-09-16 06:08 AM

Hello @Martin22 

The SP certificate used for SAML is the same as the one applied on the Qlik Proxy service

https://community.qlik.com/t5/Knowledge/How-to-change-the-certificate-used-by-the-Qlik-Sense-Proxy-t...

 

When it comes to SHA-256 with SAML, this certificate's private key cryptographic provider needs to be specifically "Microsoft Enhanced RSA and AES Cryptographic Provider"

https://community.qlik.com/t5/Knowledge/SHA-256-and-Converting-the-Cryptographic-Service-Provider-Ty...

 

Hope that helps.

If the issue is solved please mark the answer with Accept as Solution.
922 Views
0 Likes
Martin22
Partner - Contributor III
Partner - Contributor III
‎2021-09-23 10:13 AM
Author

Hi,

Thank you for your answer, we're working on it.

Once we have the certificate, is there a specific folder where we have to paste it, so the virtual proxy automatically uses it ?

Best regards,

Martin.

877 Views
0 Likes
Damien_Villaret
Support
Support
‎2021-09-30 10:24 AM

Hello @Martin22 

You just need to import it in the Windows mmc console as described in the link, then indicate the thumbprint in the QMC. There's a video with the steps in the article I previously sent you.

Best regards,

If the issue is solved please mark the answer with Accept as Solution.
832 Views
0 Likes