Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Join us at Qlik Connect for 3 magical days of learning, networking,and inspiration! REGISTER TODAY and save!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
christopherkramer
Partner - Contributor III
Partner - Contributor III
‎2022-12-06 10:08 AM

Make Qlik monitor and status endpoint use HTTPS

We have a Qlik Sense Enterprise on Windows setup in an environment where no open HTTP endpoints are allowed. We setup an HTTPS certificate in QMC and made sure HTTP is disabled in the proxy. Unfortunately we discovered that two HTTP endpoints remain open without encryption:

http://hostname:4444/status 
http://hostname:5252/monitor 

How can we make those two endpoints use HTTPS?

Qlik Sense Enterprise on Windows
Thumbnail of Qlik Sense Enterprise on Windows
Qlik Sense Enterprise on Windows
Labels (3)
Labels
633 Views
0 Likes
1 Solution

Accepted Solutions
Niroopananda
Support
Support
‎2023-02-08 06:13 AM

@christopherkramer 

Unfortunately port 4444 cannot be used on HTTPS because,

"REPOSITORY_SETUP_SERVICE. Exposes endpoints for installing certificates in the rim node. Uses HTTP.

REPOSITORY_STATUS_SERVICE. Exposes endpoints for returning the current status of the node (Initializing, CertificatesNotInstalled, Running). Uses HTTP. "

And port 5252 will use HPPTS.  Qlik will not make any changes and by default it will use the standard configurations. Please check with your internal IT team if there are any hardcoded things done on the server or any other settings made.

 

View solution in original post

526 Views
0 Likes
3 Replies
Niroopananda
Support
Support
‎2023-01-30 08:36 AM

Hi @christopherkramer 

These are the ports which communicate internally and are encrypted with the self signed certificates.

561 Views
christopherkramer
Partner - Contributor III
Partner - Contributor III
‎2023-02-06 02:45 AM
Author

Thanks for your reply. Unfortunately, company policies from our customer state that no process may open a port that allows HTTP communication. We are also not allowed to just block these ports using a firewall. What exactly are these ports used for? Is there a way to disable the services that open these ports?

534 Views
0 Likes
Niroopananda
Support
Support
‎2023-02-08 06:13 AM

@christopherkramer 

Unfortunately port 4444 cannot be used on HTTPS because,

"REPOSITORY_SETUP_SERVICE. Exposes endpoints for installing certificates in the rim node. Uses HTTP.

REPOSITORY_STATUS_SERVICE. Exposes endpoints for returning the current status of the node (Initializing, CertificatesNotInstalled, Running). Uses HTTP. "

And port 5252 will use HPPTS.  Qlik will not make any changes and by default it will use the standard configurations. Please check with your internal IT team if there are any hardcoded things done on the server or any other settings made.

 

527 Views
0 Likes