Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Suggest an Idea

Announcements
This page is no longer in use. To suggest an idea, please visit Browse and Suggest.

Allow for CA Signed Certificates in Qlik Sense interprocess communication

johnh
Partner - Creator
Partner - Creator
‎2020-01-22 05:49 AM

Allow for CA Signed Certificates in Qlik Sense interprocess communication

I have a client whose central IT is saying that the internal Qlik Sense Self Signed Certificates are a vulnerability and must be replaced with signed certificates or removed.

We have replaced the Proxy Certificate with a CA Signed one but they want the others signed.

At the moment there is no way of doing this. We need a way. 

Status: Closed - Declined Submitted by Partner - Creator on ‎2020-01-22 05:49 AM
Labels
Tags (2)
638 Views
0 Likes
1 Comment
Jeffrey_Goldberg
Employee
Employee
‎2020-06-25 03:55 PM

Hi @johnh ,

The main use case for the self-signed certificates is inter-service communication and when you expand to multiple nodes. Unfortunately, they cannot be changed. 

What you can do if the concern is external parties hitting the servers with the certificates is:

1. Don't share the self-signed certificates
2. Block direct access to service ports for incoming external connections because those require the certificates.

 

Regards,

 

Jeff G

Status changed to: Closed - Declined
Subscribe by Topic