Control of user actions when exporting a file containing sensitive or protected information from the qlikview web application
The problem: In order to control the downloading of sensitive or protected information by users from the qlikview web application, the information security administrator needs the ability to compare user actions in logging files and the name of the downloaded file.
What we have:
QlikView Build Info: release/QV12-40/63 When a user exports a file from the qlikview web application, the server creates the file in a folder ..\ProgramData\QlikTech\qlikviewserver\Temp and then passes it to the user's machine. An entry is made in the audit file about the export of the file. However, it is not possible to uniquely match the name of the downloaded file and the entry in the audit file.
The proposed solution: We suggest adding a field containing the name of the downloaded file to the logging file, and adding a session ID to each file name. This structure will allow you to uniquely determine the type and volume of information downloaded by the user. In order for this system to work, we need to create an application that transfers the downloaded files from ..\ProgramData\QlikTech\qlikviewserver\Temp to the archive database
Bill - Principal Technical Support Engineer at Qlik To help users find verified answers, please don't forget to use the "Accept as Solution" button on any posts that helped you resolve your problem or question.