When using certificate trust, the Qlik Sense services require that the ports listed in the following table can be opened and used for communication. If any Qlik Sense communication passes through a network firewall, the ports in the firewall must be opened and configured for the Qlik Sense services.
| Port no. | Description |
|---|---|
| 4570/TCP |
Certificate password verification port, only used within multi-node sites by non-master Qlik Sense Repository Services (QRSs) to receive the password that unlocks a distributed certificate. The port can only be accessed from localhost and it is closed immediately after the certificate has been unlocked. The communication is always unencrypted. |
| 4444/TCP |
Security distribution port, only used within multi-node sites by non-master Qlik Sense Repository Services (QRSs) to receive a certificate from the master QRS. The communication is always unencrypted, but the transferred certificate package is password-protected. |
Firewall configuration changes might be necessary, depending on the location of the Qlik Sense nodes within the resulting network and the routing of the communication.
The services use the following protocols:
- The Qlik Sense Engine Service (QES) uses the Qlik Engine API over Secure Sockets Layer (SSL).
- All other services use REST/JSON as the protocol over SSL.
Did this page help you?
If you find any issues with this page or its content – a typo, a missing step, or a technical error – let us know how we can improve!