Update the sso-settings.json ThingWorx Configuration File

AD FS as the CAS and IdP for ThingWorx > Example: AD FS as Central Auth Server and Identity Provider > Configuring Authorization with AD FS with ThingWorx as Resource Server or a Different Application than ThingWorx as a Resource Server > Configure ThingWorx with a Resource Server in AD FS Application Groups when the Resource Server is an Application other than ThingWorx > Update the sso-settings.json ThingWorx Configuration File

If you are configuring your ThingWorx application as a Resource Server (and not as the client application), the steps in this section are not required.

1. Stop the ThingWorx server.

2. From the <ThingWorx Installation Folder>\ThingworxPlatform\ssoSecurityConfig directory, open the sso-settings.json file.

3. Update the AuthorizationServersSettings component as follows:

◦ AuthorizationServerId – Update this ID.

◦ clientId – Enter the Client Identifier that you copied to a text file in Step 4 of Configure ThingWorx to be a Server Application (client) in Application Groups.

◦ clientSecret – Enter the Secret you copied in Step 5 of Configure ThingWorx to be a Server Application (client) in Application Groups.

◦ authorizeUri – Enter a value in the following format:

https://<ADFS_FQDN>/adfs/oauth2/authorize

◦ tokenUri – Enter a value in the following format:

https://<ADFS_FQDN>/adfs/oauth2/token

◦ mandatoryScopes – Enter any value that is not defined in the list of scopes on the AD FS server.

For more information, see Configure the sso-settings.json File in the ThingWorx Help Center.

4. Start the ThingWorx server.

Was this helpful?