Identity providers
An identity provider (IdP) manages identity information for users and provides authentication services. You have the option to use an already existing IdP when setting up your deployment. You can also choose to use Qlik Account. Any IdP vendor compatible with the OpenID Connect standard is supported.
To support the use of your own IdP, your license includes IdP. With this license there is an Identity provider pane in the Management Console. If you do not have an IdP, you can use the invite option under Users in the Management Console.
This functionality is not available in Qlik Sense Business.
In Qlik Cloud, Qlik automatically provisions a default identity provider (IdP) called Qlik Account to make it easier to get started with the platform (not available with Qlik Cloud Government). Qlik Account is a Qlik provided authentication mechanism to access properties within the qlik.com and qlikcloud.com domains. The email address for which you received the Qlik Cloud welcome email, also known as the Service Account Owner, is a member of the Qlik Account IdP, and for Qlik Cloud tenants created via My Qlik is able to immediately log into the tenant following creation.
You can also choose to use your own IdP to a Qlik Cloud deployment. Each Qlik Cloud tenant supports one interactive IdP such as Qlik Account, Azure AD, OKTA, Auth0, or another Open ID Connect (OIDC) compliant IdP. If you deploy your own interactive IdP, this will replace the Qlik Account login flow with that of your chosen IdP.
This topic describes how to configure the identity provider settings in Qlik Cloud. You also need to make configurations on the identity provider side. For a walk-through of those configurations, refer to the following resources:
Using Salesforce.com as an IDP for Qlik Sense Enterprise SaaS (OIDC authentication)
Using Active Directory Federation Services as an IDP for Qlik Sense Enterprise SaaS
How To: Configure Qlik Sense Enterprise SaaS to use Azure AD as an IdP
Qlik Sense Mobile SaaS and identity providers
If your Qlik Cloud users are using Qlik Sense Mobile SaaS, you must use one of the following identity providers. Identity provider vendors not listed may support Qlik Sense Mobile SaaS connectivity.
-
Okta
-
Auth0
-
Salesforce
-
Azure AD
-
Google Identity (Generic integration)
-
OneLogin (Generic integration)
-
Qlik Account (not available with Qlik Cloud Government)