Skip to main content
Announcements
Have questions about Qlik Connect? Join us live on April 10th, at 11 AM ET: SIGN UP NOW
cancel
Showing results for 
Search instead for 
Did you mean: 
marcos_herrera
Partner - Creator III
Partner - Creator III

Installing a CA certificate for QlikSense

Hi Dear Qlik Community

I have a customer that has QlikSense installed and worked fine but wants implement a CA Certificate to use with QlikSense, I tried to install but not works, the internet browser show me the error that are using a non-secure certificate:

 

Some details, about the installation

  • The signed CA certificate, has a valid private key and are installed on the correct place

QlikSense_CA_Certificate1.PNG

QlikSense_CA_Certificate2.PNG

 

QlikSense_CA_Certificate4.PNG

  • The ThumbPrint CA Certificate are registered on QMC

QlikSense_CA_Certificate3.PNG

QlikSense_CA_Certificate7.PNG

  • The certificate URL was registered on QMC

QlikSense_CA_Certificate14.png

  • The self-signed Qlik certificated was not removed

QlikSense_SelfSigned_Certificate1.PNG

QlikSense_SelfSigned_Certificate2.PNG

QlikSense_SelfSigned_Certificate3.PNG

 

  • Access to QlikSense HUB on different internet browsers

 

QlikSense_CA_Certificate8.pngQlikSense_CA_Certificate9.png

QlikSense_CA_Certificate10.png

 

  • I reviewed with Chrome Dev tools (F12) on security overview and I validated that the browser are using the CA certificate 

 

QlikSense_CA_Certificate11.png

QlikSense_CA_Certificate12.png

QlikSense_CA_Certificate13.png

 

Between steps i restarted the QlikSense Services, but not works the browser still show me the non secur website

 

Thanks

 

 

 

 

Labels (2)
1 Solution

Accepted Solutions
ganapati_h
Partner Ambassador Alumni
Partner Ambassador Alumni

Hi,

If the SSL is generated via an internal CA, then the ROOT CA certificate will have to be installed on all browser which access Qlik Sense.

Regards,
GH

View solution in original post

4 Replies
JustinDallas
Specialist III
Specialist III

Who is your cert authority issuing the cert?  Specifically that "ROOT CA EPM E.S.P"?  I'm thinking that Chrome doesn't have that org listed as a trusted root authority, so it's throwing these errors.  Is this cert a self-signed one?  I'm not sure what kind of company your client is, but generally, if it's a big big big company, they will have their own certs and they will push out policy to the Chrome browsers to make it trust the certs used inside the company.

 

To get the cert working on our QlikSense system, I had to create a key, ship it off to GoDaddy, and then use what they sent back (I think).

 

CertNonsense.png

marcos_herrera
Partner - Creator III
Partner - Creator III
Author

Hi Justin

 

Thanks for the answer, the customer is a big company and has his own CA y and the certificate is not self signed, usually the customer use internet explorer to use Qlik but i tried on three browsers and not works.

The IT Customer Department created the certificate and private key and signed the certificate with his own CA

ganapati_h
Partner Ambassador Alumni
Partner Ambassador Alumni

Hi,

If the SSL is generated via an internal CA, then the ROOT CA certificate will have to be installed on all browser which access Qlik Sense.

Regards,
GH

marcos_herrera
Partner - Creator III
Partner - Creator III
Author

Hi ganapati_h

 

Thanks for the answer, the solution works for me