cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

ThingWorx Navigate is now Windchill Navigate Learn More

Translate the entire conversation x

Configure Microsoft Entra ID as CAS and IDP for ThingWorx

Go to solution
SS_10840299
4-Participant
4-Participant
‎Apr 08, 2025 04:55 AM
‎Apr 08, 2025 04:55 AM

Configure Microsoft Entra ID as CAS and IDP for ThingWorx

We are currently using Pingfederate as CAS and Microsoft Azure Entra ID as IDP . We want to switch and only use Azure Entra ID as both CAS and IDP. We are able to authenticate users using Entra ID in thingworx but now we want to integrate windchill using integrator connectors. SO we have to setup windchill as a resource server on Entra iD or can we do it just by keeping thingworx as resoruce server. Do we have any use case that we can refer to.

 

I am refering this document  - https://support.ptc.com/help/identity_and_access_management/en/index.html#page/iam/AzureADasCASandIdP.html#

Labels:
0 Kudos
Notify Moderator
ACCEPTED SOLUTION

Accepted Solutions
TonyZhang
16-Pearl
16-Pearl
(To:SS_10840299)
‎Apr 20, 2025 10:18 PM
‎Apr 20, 2025 10:18 PM

Hi @SS_10840299 

 

I'm not sure what use case you are looking for.

If you want to use integration connector to connect with Windchill, basically you can use one of the following 3 ways for authentication.

See article CS397076

  • Fixed Authentication
  • SSO (OAuth)
  • Windchill Authentication

If you want to configure OAuth using Entra ID, you will need to configure OAuth with Windchill as the Resource Server

Refer to Windchill Help Center - Configure OAuth Delegated Authorization, ThingWorx Help Center - 

Configuring Authorization with Microsoft Entra ID with ThingWorx as a Resource Server or a Different Application as a Resource Server for more information on the necessary configurations.

 

Tony

View solution in original post

0 Kudos
Notify Moderator
3 REPLIES 3
Surya_Tiwari
16-Pearl
16-Pearl
(To:SS_10840299)
‎Apr 08, 2025 07:27 AM
‎Apr 08, 2025 07:27 AM

Hi, @SS_10840299. Take a look at the article below.

 

https://www.ptc.com/en/support/article/CS422292

0 Kudos
Notify Moderator
SS_10840299
4-Participant
4-Participant
(To:Surya_Tiwari)
‎Apr 08, 2025 10:01 PM
‎Apr 08, 2025 10:01 PM

@Surya_Tiwari  is there a use case you can show me. I have already referred that guide.

0 Kudos
Notify Moderator
TonyZhang
16-Pearl
16-Pearl
(To:SS_10840299)
‎Apr 20, 2025 10:18 PM
‎Apr 20, 2025 10:18 PM

Hi @SS_10840299 

 

I'm not sure what use case you are looking for.

If you want to use integration connector to connect with Windchill, basically you can use one of the following 3 ways for authentication.

See article CS397076

  • Fixed Authentication
  • SSO (OAuth)
  • Windchill Authentication

If you want to configure OAuth using Entra ID, you will need to configure OAuth with Windchill as the Resource Server

Refer to Windchill Help Center - Configure OAuth Delegated Authorization, ThingWorx Help Center - 

Configuring Authorization with Microsoft Entra ID with ThingWorx as a Resource Server or a Different Application as a Resource Server for more information on the necessary configurations.

 

Tony
0 Kudos
Notify Moderator
Announcements


Contact Community Management
Top Tags