Qlik Community

QlikView Security & Governance

Discussion Board for collaboration on QlikView Security and Governance.

Announcements
QlikView Fans! We’d love to hear from you.
Share your QlikView feedback with the product team… Click here to participate in our 5-minute survey.
Rules, plus terms and conditions, can be found here.
Not applicable

Is SSL secure enough?

I'm working with some medical related data, so obviously security is a top concern. Currently, we have our dashboard available on the Access Point which is hidden behind a VPN. However, some of our users can't the VPN due to their company's network policy. To use the VPN, they have to disconnect from their office LAN and then use a Verizon MiFi card to access the internet and can only use the VPN on the MiFi card. Of course, the MiFi card is too slow so users are rarely using the dashboard.

We would like to implement SSL instead of VPN for these users so that way they can use their faster ethernet connection to directly login. How can I use SSL with IIS on a Windows 2012 server? Is SSL secure enough that we can let users connect to the dashboard, and control their login with Windows/Qlikview?

Tags (2)
1 Solution

Accepted Solutions
Employee
Employee

Re: Is SSL secure enough?

Dear Colin,

Attached is steps to implement SSL. Now, Accesspoint is basically a webpage so adding SSL is a extra security layer, in other words, yes it is safe.

Transport Layer Security - Wikipedia, the free encyclopedia

Giuseppe Novello
Qlik's Principal Technical Support Engineer
4 Replies
Employee
Employee

Re: Is SSL secure enough?

Dear Colin,

Attached is steps to implement SSL. Now, Accesspoint is basically a webpage so adding SSL is a extra security layer, in other words, yes it is safe.

Transport Layer Security - Wikipedia, the free encyclopedia

Giuseppe Novello
Qlik's Principal Technical Support Engineer
Employee
Employee

Re: Is SSL secure enough?

Hi Colin,

SSL is secure and there are different levels of SSL. I would make sure the Provider of you SSL certificate has a reputation for security. VeriSign is a great one, but the cost can be very high.

The installation and setup using IIS is very easy and your IT team shouldn't have any issue doing it.

Bill

Not applicable

Re: Is SSL secure enough?

Thanks for the reply. I had thought that SSL was safe, but I had a user with concerns since SSL leaves an external IP instead of being hidden behind a VPN. This helps!

Employee
Employee

Re: Is SSL secure enough?

Hi,

Yes, port 443 is open to the outside world. However, it is just like your Bank Website. You secure it with a username and password. What SSL does is makes the data exchange secured.

Bill

Community Browser