How the Windows Authentication Pattern in Qlik Sense Virtual Proxy settings works
Article Number: 000026514 | Last Modified: 2018/06/12
The Qlik Sense Virtual Proxy has two different authentication options by default, Forms and Windows Authentication. The Windows Authentication Pattern setting determines when each is used.
When a client connects to Qlik Sense, the browser sends a User-Agent string to as part of the standard connection process.
The Qlik Sense Proxy service reads this string and checks for the presence of the value found in Windows Authentication Pattern. If the string is present windows authentication is used and if the browser supports NTLM the user may be automatically logged in, if the automatic login fails they will get a pop-up asking for username and password.
If the Windows Authentication Pattern value is not found then we fall back to forms authentication where instead we use a form and always require a username and password for login.
The default value for Windows Authentication Pattern is "Windows", which is present in all windows browser user-agent strings. If you change it to say Chrome or Firefox instead only those browsers will be offered Windows authentication. If you want to use Windows Authentication on all browsers try setting it to a string found in all user-agents, for example "Mozilla"