Re: Filtering users able to connect using Identity... - Qlik Community

Raphaël · ‎2024-11-22

Hi dear Qlik community,

We're looking for a solution to limit users able to connect on our Qlik Cloud environment thanks to a specific AD group.

We're using WS One as a provider and we want to define a specific group in order to easily delimiter users that will be able to connect. In another hand, we want to collect all groups attached to users to apply our securities.

Is it possible to apply something like this?

Thank you in advance.

Kind regards,

Raphaël MARTIN.

hugo_andrade · ‎2024-11-29

Hey @Raphaël ,

The scenario you are highlighting is possible in many identity providers.

What you would do is:

Send the user groups as claims: this will allow you to leverage those for security within the app.
Set the access group on the IdP application as App assignment: this way only users that are member of the specified group would be able to authenticate in the Qlik platform.

Both controls can be set on most of the Identity Provider side.

Maybe we could help more if you would share the configuration screens on WS One.

Live and Breathe Qlik & AWS.
Follow me on my LinkedIn | Know IPC Global at ipc-global.com

Raphaël · ‎2024-11-29

Thanks a lot for your return @hugo_andrade ,

Your return is really helpful.

Regarding, configuration on WS One, I can't share it right now and I have to do some tests before further investigation.

Kind regards.

Filtering users able to connect using Identity provider

Cloud

Move to Qlik Cloud Analytics