Is it possible to allow for a third party CA Signed Certificates to be used for Qlik Sense service communication?
This is not possible. Do not delete the internal Qlik Sense Certificates. Those certificates are needed for service communication.
Qlik Sense installs three self-generated certificates with the installation
- Current User -> Personal -> QlikClient(signed by CentralNodeServername-CA)
- Computer -> Personal -> CurrentServername(signed by CentralNodeServername-CA)
- This is the certificate used by Proxy on HTTPS port by default
- Computer -> Trusted Root -> CentralNodeServername-CA(signs above 2 certificates)
Do not delete above certificates, they are needed for internal service communication and the encryption of the data connection strings. More detailed information can be found here: Backing up Certificates (Help.com)
You can, however, import your own certificate (either signed by public CA or organization CA) to Proxy server then configure Proxy to use it on HTTPS port(default is 443) by following this article:
How to: Change the certificate used by the Qlik Sense Proxy to a custom third party certificate
Environment:
Qlik Sense all versions
This has previously been submitted as a feature request, however no plans to change the current behaviour are set. See Allow for CA Signed Certificates in Qlik Sense interprocess communication .
