Qlik Community

Qlik Sense Deployment & Management

Discussion board where members learn more about Qlik Sense Installation, Deployment and Management.

Not applicable

Qliksense Security rules

Hi,

We are starting to set up our security rules for our organisation.

We have three types of users in the allocated AD Groups:

  1. Those who will only read apps (and not create apps)     :  AD Group = QSENSE_Basic
  2. Those who will read apps and create their own but unable to publish  : AD Group = QSENSE_Intermediate
  3. Admin type users who can create / publish / delete etc : AD Gourp = QSENSE_Advanced

Can anyone advise how to set up the security rules for this?

I can see that there are already a lot of 'out of the box' security rules - so are there any I need to disable to achieve this?

Many thanks for your help!

TJM

8 Replies
berndshexe
New Contributor III

Re: Qliksense Security rules

hi,

I hope, this will help:

https://community.qlik.com/docs/DOC-18222

In every rule you can set the parameter create, read and so on.

Security Rule editing.PNG

Regards,

Petra

berndshexe
New Contributor III

Re: Qliksense Security rules

i created a doc for the deifferent steps.

Hopes, it may help !

Not applicable

Re: Qliksense Security rules

Hi Petra,

Where is the user.@AD_Group from? It's a custom property? and how this connects to the AD Group?

Thanks.

berndshexe
New Contributor III

Re: Qliksense Security rules

Hi David,

@AD_Group is a custom propertie, to show the case how to use security rulles for groups.

But if you have AD Groups, You will find them under user.group, with value you can see the groups in your AD.

AD Groups.PNG

means: ((user.group="XXX Consultants")) gives users in this Group access.

Hope, this helps,

regards,

Petra

Not applicable

Re: Qliksense Security rules

Thanks Petra.

Weird thing is I don't have "group" , only name.ID,role and etc.

Any idea why the group didn't show up?

berndshexe
New Contributor III

Re: Qliksense Security rules

Hi David,

I don't know, why you don't see groups.

Please check your user directory connector.

We created a sync with all users and did not check "only existing users".

Maybe that's the difference?

Not applicable

Re: Qliksense Security rules

Thanks, Petra.

Just figured out the problem. If I included the whole directory, the "group" appears.

berndshexe
New Contributor III

Re: Qliksense Security rules

Hi David,

great, I'm glad, that you found the solution.