Possibility of having several methods of Authentic... - Qlik Community

david_huray · ‎2019-12-18

Hi all,

We have an Qlik Sense single node Enterprise instance on a server outside our corporate Windows domain (in AWS). We're using local Windows users created on this server and Windows authentication configured in QMC as shown, having the licenses assigned to windows users

As we have a corporate ADFS we're thinking about integrating this kind of authentication with our out of corporate domain Qlik Sense server

The first question is if it's possible to maintain both Windows Authentication and ADFS integration in order to have current users/license assignement and new users from ADFS, to migrate them gradually, and even coexist users from both, if possible

Thanks in advance fro your help

Levi_Turner · ‎2019-12-18

Yep, that's possible. That's the rationale behind having a "Virtual Proxy". It allows for you to have as many methods of authentication as needed to support the user base you have.

JustinDallas · ‎2019-12-18

Is there any documentation on how to accomplish such a goal? I'm only asking because it seems like it would be difficult to even test multi-auth without having multiple full-blown authenticators online (unless you can use a text file based authentication of some sort).

dwforest · ‎2019-12-18

Lots of information in on-line help.

Testing involves just using the various URLs you set up as virtual proxies. Adding new ones does not impact existing ones.

https://help.qlik.com/en-US/sense-admin/November2019/Subsystems/DeployAdministerQSE/Content/Sense_De...

Levi_Turner · ‎2019-12-19

The doc that @dwforest pointed to is good for the virtual proxy stuff. For the ADFS specific stuff, there are a series of videos which can be referenced:

Possibility of having several methods of Authentication: Windows and ADFS

ADFS

authentication

Identity

Windows AD