my Organization adopted recently stricter IT security rules: all executable's resulting from an installation should be checked and inserted in a white list of approved files, in alternative executable's files are allowed only in dedicated directories. Otherwise the Windows AppLocker blocks the execution.
Qlik sense desktop 2.2.3 stopped working with the new rules.
When the IT department tried to enable it, it resulted that QlikSense.exe is a container of many other exe files, extracted runtime and executed under OSDRIVE%\USERS\%USERNAME%\APPDATA\LOCAL\TEMP\1\.... and corresponding to the different functionalities of the application
1) Would it be possible to list all the .exe generated runtime by Qlik Sense?
2) Would it be possible to force another directory of execution?
(with the 2 files QlikSenseBrowser.ini and Settings.ini it seems partially possible)
For Qlik Sense desktop, the current working model is to install to user's profile as you've learned. This is being actively revisited due to organizations like your's where executables in the user's profile is not allow.
In theory you can move the QlikSense.exe from %LOCALAPPDATA%\Programs\Qlik\Sense to any arbitrary location and it'll run (I've moved it to a Windows 2008 R2 server for testing purposes, also unsupported).
It will run this way but the downside is that it is not supported in that this is not how R&D intended the product to be run so that will limit the insight that we in Support can give if you run into problems (e.g. connecting to some of the other .EXE locations used like %LOCALAPPDATA%\Temp\SensePrinting2.0.50500.0409.10 and %LOCALAPPDATA%\Temp\DataPrepService2.0.50500.0409.10).
Hi, another possible solution for the issue would be to add the (same) digital signature to all the exe runtime generated by Qlik-Sense (It seems some of them has it). Security triggers might be instructed to trust that.