Solved: SSL on new Qlikview Server Deployment - Qlik Community

Senor_Dai · ‎2021-09-13

Hi,

I've created a new Qlikview deployment in AWS . If I set the port to 80 in the QMC I can access the AP externally with no problems. Ive carried out the usual process outlined here :https://community.qlik.com/t5/Knowledge/How-To-Setup-HTTPS-SSL-with-QlikView-AccessPoint-WebServer-a...

So, after entering this cmd

netsh http add sslcert ipport=MyPublicIPAddress:443 certhash=0ca71e2ecef0ff3e6cxxxxxxxxxxxxxxxxx appid={99999999-9999-9999-9999-9999999999999}

and then run the cmd netsh http show ssl

gives the following :

However, when I switch to 443 and https on the QMC - the access point doesnt respond (even after a server restart).

Ive also double checked that 443 is allowed inbound on our AWS Security group:

Also to add, ive installed QV Server version 12.60.20000.0

Is there anything Ive missed?

Many thanks,

Dai

Sebastian_Linser · ‎2021-09-14

Hello @Senor_Dai

have you checked the logs here?

(C:\ProgramData\QlikTech\WebServer\Log)

one thing i would have changed in the command line above is the interface IP

netsh http add sslcert ipport=MyPublicIPAddress:443 certhash=0ca71e2ecef0ff3e6cxxxxxxxxxxxxxxxxx appid={99999999-9999-9999-9999-9999999999999}

to

netsh http add sslcert ipport=0.0.0.0:443 certhash=0ca71e2ecef0ff3e6cxxxxxxxxxxxxxxxxx appid={99999999-9999-9999-9999-9999999999999}

That would make it possible also to test the accesspoint from localhost https://localhost/qlikview alternativly https://servername/qlikview, and it will still listen to the external IP.

Before you are able to add it the second way you need to remove it with

netsh http delete sslcert ipport=MyPublicIP:443

best regards

Sebastian

Help users find answers! Don't forget to mark a solution that worked for you! 🙂

View solution in original post

Sebastian_Linser · ‎2021-09-14