cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

ThingWorx Navigate is now Windchill Navigate Learn More

Translate the entire conversation x

Can I connect ThingWorx on Prem to Azure Key Vault?

Go to solution
MG_9567080
12-Amethyst
12-Amethyst
‎Mar 14, 2023 09:24 AM
‎Mar 14, 2023 09:24 AM

Can I connect ThingWorx on Prem to Azure Key Vault?

We have several instances of ThingWorx and would like to utilize Azure Key vault. Is there a built in way to easily integrate ThingWorx to read from Azure Key Vault? We have enterprise databases used across instances, so when we migrate each one from Dev/Test/Prod we need to update the passwords. Unfortunately we are unable to use Solution Central. 

 

 

 

Labels:
0 Kudos
Notify Moderator
ACCEPTED SOLUTION

Accepted Solutions
Constantine
17-Peridot
17-Peridot
(To:MG_9567080)
‎Mar 15, 2023 07:40 AM
‎Mar 15, 2023 07:40 AM

I guess you migrate your application between Dev/Test/Prod using some CI/CD pipeline? Then I'd suggest you integrate the latter with your Key Vault, and inject those credentials into ThingWorx through a service exposed via REST API.

 

View solution in original post

Notify Moderator
3 REPLIES 3
VladimirN
24-Ruby II
24-Ruby II
(To:MG_9567080)
‎Mar 14, 2023 09:29 AM
‎Mar 14, 2023 09:29 AM

Can this help? From "Help Center" - "Step 7. Set Up Encryption for Azure IoT Hub Credentials": https://support.ptc.com/help/thingworx_scm_azure/r3.0/en/index.html#page/thingworx_scm_azure/azure_connector/c_azure_connector_set_up_encryption_for_azure_hub_credentials.html 

0 Kudos
Notify Moderator
Constantine
17-Peridot
17-Peridot
(To:MG_9567080)
‎Mar 15, 2023 07:40 AM
‎Mar 15, 2023 07:40 AM

I guess you migrate your application between Dev/Test/Prod using some CI/CD pipeline? Then I'd suggest you integrate the latter with your Key Vault, and inject those credentials into ThingWorx through a service exposed via REST API.

 

Notify Moderator
geva
15-Moonstone
15-Moonstone
(To:MG_9567080)
‎Mar 15, 2023 11:45 AM
‎Mar 15, 2023 11:45 AM

Agreed with Constantine that this likely goes into your CI/CD pipeline.  Other options to consider depending on how you're running those environments is using using environment variables combined with Jinja configuration files (ie: container deployment) and you could them tie Kubernetes secret provider to the Key Vault.

Notify Moderator
Announcements


Contact Community Management
Top Tags