I deployed a virtual proxy with a custom atuthentication module. Customer wants to redirect qliksense.company.com.ar to https://IP. If they use https://IP, it redicts to default virtual proxy (http://IP/Hub). What they need is to redirect as default to https://IP/Web/Hub (Web is the alternative virtual proxy).
AS far as I know, "Is virtual proxy" check box can't be disable at the default virtual proxy, and is not present at the alternative virtual proxy. That's why I'm thinking is not posible to change.
May be they can use qliksense.company.com.ar/Web, but main idea is that user use inly qliksense.company.com.ar.
Only downside is you need IIS to be running on the server, but that's ok I guess (as long as it's locked down properly and don't expose any security holes).
I found another solution too, btw.
If you change the default virtual proxy so that
a. it has a prefix (e.g. winauth), and
b. it has a unique cookie header name (e.g. X-Qlik-Session-winauth)
this will free up the https://<FQDN>/ endpoint. Now remove the prefix from your SAML or whatever other virtual proxy you want to be at the root, and voila - https://<FQDN>/ now uses the auth mechanism of your choice.
You can still use https://<FQDN>/winauth when needed.
In combination with Gareth_Wilson's suggestion for http to https redirection, you get a lot of flexibility.
Setting up a reverse proxy in front of the whole Sense environment still provides best flexibility, but also requires a lot more work/skills.