Qlik Community

Knowledge

Search or browse our knowledge base to find answers to your questions ranging from account questions to troubleshooting error messages. The content is curated and updated by our global Support team

Announcements
Support Case Portal has moved to Qlik Community! Read the FAQs to start exploring Support resources.

Export client certificate and root certificate to make API calls

Damien_Villaret
Support
Support

Export client certificate and root certificate to make API calls

There are mainly 2 ways to call a Qlik Sense API:

  • By going through the Qlik Sense Proxy service on port 443 (https) or 80 (http) and authenticate to the proxy with the authentication method set up in the virtual proxy settings.
  • Making a direct call to the service that you want to make an API call to (On port 4242 for example for Qlik Repository service) and use the client certificate to authenticate. In this case, the client certificate must be imported for the user logged in on the machine from where the API call is made.


* Ports mentioned above are default ports in a Qlik Sense installation but can be customized in each service settings.

 

Resolution:

 

Do the following:

  1. Select Certificates on the QMC start page (Last option in the blue section). The Export page for Certificates is displayed.
    1.png

  2. In the Machine name box, type the full computer name of the computer that you are creating the certificates for: MYMACHINE.mydomain.com or the IP address.
  3. Password is optional
  4. Select Include secret key
  5. Select file format in the Export file format for certificates drop-down list. Windows format if the machine you are exported for is a Windows operating system.
  6. Click "Export certificates"
  7. Copy the client certificate (client.pfx) and root.cer from C:\ProgramData\Qlik\Sense\Repository\Exported Certificates\{MYMACHINE.mydomain.com}
  8. On MYMACHINE.mydomain.com, double-click client.pfx and choose to install it in the current user personal store.
  9. On MYMACHINE.mydomain.com, double-click root.cer and choose to install it in the Trusted Root Certification Authorities store.

See QRS API using Xrfkey header in Postman for procedure on how to make API calls with Postman using client certificates.  

Labels (1)
Version history
Revision #:
6 of 6
Last update:
‎2021-06-17 10:44 AM
Updated by: