Qlik Community

Security & Governance

Discussion board where members can learn more about Qlik Sense deployments which are governed and self-service.

Announcements
Now Live: Qlik Sense SaaS Simplified Authoring – Analytics Creation for Everyone: READ DETAILS
cancel
Showing results for 
Search instead for 
Did you mean: 
swapnilkurundwade
Contributor II
Contributor II

Qliksense app security for OKTA users

Hi,

 

I am working on providing app security for OKTA users(We did SAML configuration as per the Qlik guideline), we have two user directories now PRD(LDAP) and OKTA one. 

I am able to restrict stream for OKTA users using user.userdirectory="OKTA" condition and it is working fine. Further I want to restrict apps within this stream should be accessible to OKTA users as per the respective roles they have, not all apps should visible to user. Here these roles we have with LDAP user directory. 

So to create app security rule I used below condition but not a single app is visible to OKTA user.

user.userdirectory="OKTA" and resource.@Organization=user.environment.group

Here @Organization is custom properties which will have user roles/groups.

Please let me know if anyone came across this or already implemented some security.

Thanks

Labels (1)
1 Reply
eliran
Creator III
Creator III

Hi,

From memory, I remmember I had problems using the extra fields from the OKTA configuration to be used in QMC / Hub rules.