It is quite possible to use Qlik Sense without using Active Directory - although AD is the most common way of providing regular security including authentication and authorization on a Windows platform.
Qlik Sense has been designed to be very flexible in this sense by supporting standard protocols so it is easy to implement alternatives to AD.
Default authentication module
After a default installation of Qlik Sense, the Qlik Sense Proxy Service (QPS) includes a module that handles authentication of Microsoft Windows users. The module supports the use of Kerberos, NTLM, and basic authentication.
NTLM in this context includes Active Directory also.
You don't need to obligate him to use AD - but whether it is smart to use AD depends on what the alternative is and how costly it will be to implement compared to AD.
Thanks for your question and welcome to the Qlik Community.
I'd like to chime in here in addition the answers provided.
By Default - Qlik Sense uses Windows Integrated Security for Authentication and it's own repository and security rules for initial Authorization. It just so happens that most Windows environments are already configured with AD so it appears seamless. Active Directory to Qlik Sense is nothing more than a repository to import user attributes into the Qlik Sense Repository that then can be used for authorization and resource object control etc. using our security rules and custom properties, etc. Authentication can also be changed to other forms as well. I just wanted to clarify in case there is any confusion as it is commonly misconstrued that our User Directory connector which can be configured for AD is used for Authentication, which is not the case.
See this video for more information f you would like:
Please mark the appropriate replies as CORRECT / HELPFUL so our team and other members know that your question(s) has been answered to your satisfaction.