Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Q&A with Qlik - Qlik Cloud Migration: Questions about migrating to Qlik Cloud? Catch the latest replay!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
TatianaSLD
Contributor II
Contributor II
‎2026-04-14 08:54 AM

Error 400 bad mapping with claims (Entra ID - OIDC)

Thanks to those other links in the Qlik community, I managed to configure the connection between Entra ID and Qlik Sense through OIDC :

Qlik Sense for Windows: How to configure OIDC with... - Qlik Community - 1812401

How To: Configure Qlik Sense Enterprise SaaS to us... - Qlik Community - 1704442

 

However, I still have a problem with claims. When I disable OIDC optional claims, I can login successfully, but when I add them back to have information about my users such as email or display name, I have an error 400.

TatianaSLD_0-1776171178512.png

Did someone manage to make it work ?

 

Labels (1)
Labels
494 Views
5 Replies
Eduardo_Monteiro
Partner - Creator III
Partner - Creator III
3 weeks ago

Hello @TatianaSLD 

Do you still need assistance?

Regards,

Eduardo Monteiro - Senior Support Engineer @ IPC Global
Follow me on my LinkedIn | Know IPC Global at ipc-global.com

342 Views
0 Likes
TatianaSLD
Contributor II
Contributor II
3 weeks ago
Author

In response to Eduardo_Monteiro

Hello @Eduardo_Monteiro ,

Yes I actually still need some help. Overall, in what I should provide on the Entra side to map correctly my claims.

Thank you !

283 Views
0 Likes
Eduardo_Monteiro
Partner - Creator III
Partner - Creator III
2 weeks ago

In response to TatianaSLD

Hi @TatianaSLD 

Are you using Qlik Sense Enterprise on Windows or Qlik Cloud?

Check the articles: 

Configure Qlik Sense Enterprise Client-Managed for Single sign-on with Microsoft Entra ID - Microsof...

How To: Configure Qlik Sense Enterprise SaaS to us... - Qlik Community - 1704442

For QSEoW we can check the logs to identify why it is failing. Those logs will probably show something like OIDC claim mapping failed: claim 'email' not found in token.

C:\ProgramData\Qlik\Sense\Log\Proxy\Trace\<hostname>_Proxy_Audit.log
C:\ProgramData\Qlik\Sense\Log\Proxy\System\<hostname>_Proxy_System.log

For Qlik Cloud you can also remove the extra claims to make sure you can successfully log in and try https://<tenantname>.us.qlikcloud.com/api/v1/diagnose-claims and check what is being mapped.

Please let me know the results.

Regards,

 

Eduardo Monteiro - Senior Support Engineer @ IPC Global
Follow me on my LinkedIn | Know IPC Global at ipc-global.com

209 Views
0 Likes
TatianaSLD
Contributor II
Contributor II
Tuesday
Author

In response to Eduardo_Monteiro

Dear @Eduardo_Monteiro ,

Thank you for your help !

However, I don't how or why, but OIDC is now working and I didn't touch anything neither my colleagues...

Have a good day !

Tatiana

101 Views
Eduardo_Monteiro
Partner - Creator III
Partner - Creator III
Tuesday

In response to TatianaSLD

Hi @TatianaSLD 

That's awesome! If you were testing it in Chrome, you might have been getting cached data.

I experienced it in the past. I always use 2 different browsers when working with idp.

BR,

Eduardo Monteiro - Senior Support Engineer @ IPC Global
Follow me on my LinkedIn | Know IPC Global at ipc-global.com

97 Views
0 Likes