Article Number: 000061953 | Last Modified: 2020/10/15
While accessing Qlik Sense Hub or QMC, the browser warring with different error codes below are experienced.
Google Chrome example: ... Your connection is not private ... NET::ERR_CERT_AUTHORITY_INVALID ...
Internet Explorer Example: (error code under "More information") ... This site is not secure ... Error Code: DLG_FLAGS_INVALID_CA ...
Qlik Sense Enterprise on Windows, all versions
This message is a warning made by Windows/browsers, to say that the SSL Certificate presented by the server, used in the secured communication between the browser and Qlik Sense is not trusted by the by the client's Operating System, or browser (e.g Firefox). The communication will still be encrypted if the user chooses to proceed, but does not guarantee the data is not being inspected between the two endpoints "in-flight".
In many cases you can find out what the "issue" is depending on the error code presented.
NET::ERR_CERT_COMMON_NAME_INVALID: this is usually due to a mismatch between the site name (in the URL) and the server name's the certificates has been issued for.
NET::ERR_CERT_AUTHORITY_INVALID: this is usually due to that the authority that has issued the certificate is not recognized or trusted, either because the certificate is a self-signed one and not a public one such as Verysign, Godaddy, Digicert, and many others. In this case your domain admin may add the self-signed cert (or certs in the Certification Path) in the Trusted Root Certification Authorities of the domain and have it distributed to the computers of the domain. Note that computer external to the domain will still have the warning if the issue. A separate certificate would need to be issued with the proper Common Name (Subject, or Subject Alternative Name) for the public domain, and used by the network border device.