Skip to main content
Announcements
Qlik Introduces a New Era of Visualization! READ ALL ABOUT IT
Sonja_Bauernfeind
Digital Support
Digital Support

On April 16th2024, Qlik is launching a highly anticipated capability: custom security roles.

What do custom security roles do?

Custom security roles introduce fine control of data export and access permissions within Qlik apps. This allows you to tailor permissions to your specific needs, enhancing data security and compliance.

The first delivery on April 16th includes the capability to control who can export content. Additional capabilities will be added soon after, such as who can create data connections, reports, and similar.

What does this mean for me?

As part of this update, the existing "has restricted view" space role will gain the ability to export data to Excel. This adjustment is in line with Qlik's capacity-based pricing model, ensuring basic users have essential tools.

If you do not wish for users with the "has restricted view" space role to be able to export data, you will need to edit the User Default role to deny download for all users, and then create a custom role that allows if for specific users and groups.

 

Stay tuned for more information and resources leading up to the April 16th launch. We are excited about these enhancements and the value they will bring to your data management and security efforts within Qlik.

Thank you for choosing Qlik,
Qlik Support

36 Comments
CJ_Bauder
Partner - Contributor II
Partner - Contributor II

This will be an excellent addition to round out the handling of sensitive data in Qlik SaaS. Thanks for the update!

2,913 Views
martingries
Luminary Alumni
Luminary Alumni

Super news and perfect timing 😊

We're on the way into Qlik Cloud and we have tomorrow the session how to map the roles from QSoW to Qlik Cloud.

And yesterday we found out, that we have now the possibility to customize the Qlik Cloud Hub for our users.

Now we need only:

  1. Subfolders in Qlik Cloud to store our QVD's etc.
  2. SAP Connectors in Qlik Data Gateway (Report, BADI and Query Connectors)
  3. More features in Qlik Tabular Reporting to have a good solution like NPrinting
  4. Good Monitoring for Tasks in Qlik Cloud (heard that something will come soon)
  5. Possibility to customize the behavior when you start an App (open in separate tab like QSoW)

Best regards

Martin

2,847 Views
Tom_MB
Contributor II
Contributor II

Waiting a long time for it, but finally these are good news 😉

Only missing part please also provide the Logs who is downloading what... because in case of any data breech this can really helps...

2,706 Views
DataKnight1
Contributor III
Contributor III

@Tom_MB 

I'm on Qlik Cloud - my team recently identified a bug on UK Tenants whereby an owner of a Data Space cannot be changed via UI @Sonja_Bauernfeind is this something you are aware of?

A solution to achieve this is qlik-cli.  I have my team looking into this in more detail. 

Initial feedback from my team is that qlik-cli will solve this issue, but could also be used to provide insights on what you have asked, eg; seeing who is downloading what - might be worth you/team investigating this further...

2,653 Views
ACorona
Contributor III
Contributor III

Awesome, Cant wait to run some tests with these changes. 

2,591 Views
timherron
Partner - Contributor
Partner - Contributor

We would like to block data exports for apps with sensitive data, but the users should be allowed to export from other apps.

Can the custom role be applied to individual apps? Or will it be applied on the user level, and those users cannot export from any apps?

2,453 Views
kogasawara
Partner - Creator
Partner - Creator

Will capacity license basic users are able to export excel with the custom security rule?

2,298 Views
AlexOmetis
Partner Ambassador
Partner Ambassador

@Sonja_Bauernfeind - this is fab news about the custom rules. As I understand it, the "has restricted view" is pretty much only used to limit data export, so is this role going away or will it serve another purpose? It seems to me it will be identical to "can view" after this change. 

@timherron - With the current "restricted view" (and the new custom one you'll need to create) they are applied to User Space permission, not to a User itself, so this way you can tailor permissions per Space - so you just need to make sure your sensitive data Apps are in Spaces with these restricted permissions. 

 

2,084 Views
Sonja_Bauernfeind
Digital Support
Digital Support

Hello @DataKnight1 

I am reaching out internally about your query. 

 

2,043 Views
StephanieR
Luminary
Luminary

Great news that this is rolling out.  How long until we see the rules added to restrict access to data connections.  
Steph

2,003 Views