Skip to main content
S
SS_108402994-Participant
4-Participant
April 8, 2025
Solved

Configure Microsoft Entra ID as CAS and IDP for ThingWorx

  • April 8, 2025
  • 2 replies
  • 788 views

We are currently using Pingfederate as CAS and Microsoft Azure Entra ID as IDP . We want to switch and only use Azure Entra ID as both CAS and IDP. We are able to authenticate users using Entra ID in thingworx but now we want to integrate windchill using integrator connectors. SO we have to setup windchill as a resource server on Entra iD or can we do it just by keeping thingworx as resoruce server. Do we have any use case that we can refer to.

 

I am refering this document  - https://support.ptc.com/help/identity_and_access_management/en/index.html#page/iam/AzureADasCASandIdP.html#

Best answer by TonyZhang

Hi @SS_10840299 

 

I'm not sure what use case you are looking for.

If you want to use integration connector to connect with Windchill, basically you can use one of the following 3 ways for authentication.

See article CS397076

  • Fixed Authentication
  • SSO (OAuth)
  • Windchill Authentication

If you want to configure OAuth using Entra ID, you will need to configure OAuth with Windchill as the Resource Server

Refer to Windchill Help Center - Configure OAuth Delegated Authorization, ThingWorx Help Center - 

Configuring Authorization with Microsoft Entra ID with ThingWorx as a Resource Server or a Different Application as a Resource Server for more information on the necessary configurations.

 

2 replies

S
Surya_Tiwari16-Pearl
16-Pearl
April 8, 2025

Hi, @SS_10840299. Take a look at the article below.

 

https://www.ptc.com/en/support/article/CS422292

S
SS_108402994-ParticipantAuthor
4-Participant
April 9, 2025

@Surya_Tiwari  is there a use case you can show me. I have already referred that guide.

T
TonyZhang16-PearlAnswer
16-Pearl
April 21, 2025

Hi @SS_10840299 

 

I'm not sure what use case you are looking for.

If you want to use integration connector to connect with Windchill, basically you can use one of the following 3 ways for authentication.

See article CS397076

  • Fixed Authentication
  • SSO (OAuth)
  • Windchill Authentication

If you want to configure OAuth using Entra ID, you will need to configure OAuth with Windchill as the Resource Server

Refer to Windchill Help Center - Configure OAuth Delegated Authorization, ThingWorx Help Center - 

Configuring Authorization with Microsoft Entra ID with ThingWorx as a Resource Server or a Different Application as a Resource Server for more information on the necessary configurations.

 

Terms & ConditionsCookie settingsAccessibility statement