Find Answers
Qlik Community
Collaborate with over 60,000 Qlik technologists and members around the world to get answers to your questions, and maximize success.
Join Us
Knowledge
QlikSense Security Concern: Port 4950 uses older TLS protocol (1.0)
Article Number: 000072224 | Last Modified: 2021/09/07Description
Even after disabling TLS 1.0 and 1.1 system-wide, a security scan may reveal Service Dispatcher port 4950 still using an older, non-secure version of TLS. This port belongs to the Precedents Service (used by the Insights feature).
Precedent service is for the improvement of the insight advisor's suggestion. It *won't disable* the the insights but it won't take any feedback from the user for improving the insights.
Environment:
Precedent service is for the improvement of the insight advisor's suggestion. It *won't disable* the the insights but it won't take any feedback from the user for improving the insights.
Environment:
Qlik Sense Enterprise February 2019 Release and earlier releases affected.
Qlik Sense Enterprise April 2019 Initial Release + Patch 1 affected.
Qlik Sense Enterprise April 2019 Initial Release + Patch 1 affected.
Cause
Product defect in Precedents Service - Service Dispatcher (QLIK-94285).
Resolution
Fixed:
This behaviour is resolved in Qlik Sense June 2019. See the June 2019 Release Notes for details on QLIK-94285.
Additionally, this issue has been resolved in the following patches:
Workaround:
NOTE: Please be aware that restarting the Service Dispatcher without doing a full service restart may cause issues, exercise caution when performing this change in a Production environment.
MULTI-NODE: Note that the change will have to be applied to all nodes in an environment.
This behaviour is resolved in Qlik Sense June 2019. See the June 2019 Release Notes for details on QLIK-94285.
Additionally, this issue has been resolved in the following patches:
- April 2019 Patch 3
Workaround:
- Navigate to your Qlik Sense installation folder
- Open the following file: INSTALL_PATH\Qlik\Sense\ServiceDispatcher\services.conf
- Search for the "[precedents]" section
- Add "Disabled=true" right below the section title
- Save the file and restart the Service Dispatcher service
NOTE: Please be aware that restarting the Service Dispatcher without doing a full service restart may cause issues, exercise caution when performing this change in a Production environment.
MULTI-NODE: Note that the change will have to be applied to all nodes in an environment.
Get Answers
Find Answers
Get Support
Have a Question?
Search Qlik's Support Knowledge database or request assisted support for highly complex issues.
Submit a case
Talk with a Representative
Critical Issues
Experiencing a serious issue, please contact us by phone. For Data Integration related issues please refer to your onboarding documentation for current phone number.
Call Us