During installation of the Qlikview On-Demand AddOn, the error "The certificate thumbprint must belong to a valid certificate" is displayed after providing the certificate thumbprint--even though the Nprinting certificate is installed on the Qlikview server.Environments:
- Qlikview 12.10 SR8
- Nprinting April 2018
- Qlik Nprinting On-Demand Add-On April 2018
- Nprinting configured with Json Web Token (JTW) authentication
Per the documentation on JWT authentication with Nprinting
(Deploying Qlik Nprinting > Security > JWT authentication), JWT authentication requires the JWT be signed with a secret key by the user (client) attempting to authenticate.
In this case, the client is the Qlikview Nprinting On Demand Add-On
and the server is Nprinting. Therefore, the certificate installed on the Qlikview server needs to include the private key so that it can be used to sign the JWT.
Note, since the On Demand Add-On injects the user's credentials into the JWT, the private key doesn't need to be installed on all users' machines--only the the Qlikview server.
Ensure the certificate used to sign the JTW includes the private key when it is installed on the Qlikview IIS server>Certificates>Local computer>Personal certificates.