Enforcing Secure Flag for QlikView Webserver cookies

QlikView includes a feature to enforce a secure flag for cookies. 

Configuration Steps QlikView Web Server

To enable the Enforcing Secure Flag feature, open the QVWS application configuration file %PROGRAMFILES%\QlikView\Server\Web Server\QVWebServer.exe.config and add or modify the required tag. 

1. Stop the QlikView WebServer service
2. Open %PROGRAMFILES%\QlikView\Server\Web Server\QVWebServer.exe.config 
3. Add or edit the following string:
   

   <add key="EnforceSecureCookieProperty" value="false"/>​

   to: 
   

   <add key="EnforceSecureCookieProperty" value="true"/>​

4. Start the QlikView WebServer Service 
   
   

Configuration Steps QlikView with IIS

1. Open IIS Manager
2. Select the Web Site the QlikView AccessPoint is run on (default is Default Web Site)
3. Open Application Settings 
4. Add EnforceSecureCookieProperty 
5. Set the value to true
6. Restart the QlikView Application Pool

Environment:

QlikView  (any version post 12)