Unlock a world of possibilities! Login now and discover the exclusive benefits awaiting you.
Sep 28, 2022 9:33:42 AM
Sep 28, 2022 9:33:42 AM
If using ADFS as an IDP (Identity Provider) in order to conform to Qlik's security requirements, ADFS must be configured to use refresh tokens and not access tokens. If refresh tokens are not configured this configuration will not be supported.
To confirm if ADFS is configured correctly to allow refresh tokens, perform the steps set out below.
{
"code": CODE_VALUE,
"code_verifier": "1234-5678-90-ABC_DEF_GJI~jkl.mno.pqrs~tuvwxyz",
"grant_type": "authorization_code",
"client_id": CLIENT_ID_VALUE,
"client_secret": CLIENT_SECRET_VALUE,
"redirect_uri": REDIRECT_URL_VALUE
}
Steps 1 and 2 need to be completed within a few seconds of each other. As the generated code from Step 1 expires after only some seconds.
If the Request made in Step 2 is successful. ADFS is configured correctly and is using Refresh Tokens.
If the request fails you will need to change your ADFS configuration.
The information in this article is provided as-is and to be used at own discretion. Depending on tool(s) used, customization(s), and/or other factors ongoing support on the solution below may not be provided by Qlik Support.
Using Active Directory Federation Services (ADFS) as an IDP for Qlik Cloud.
ADFS single sign-on settings