Example: Microsoft Entra ID as Central Auth Server and Identity Provider
This example provides detailed steps on how to configure authentication and authorization in an SSO environment that has ThingWorx configured for single sign-on with Microsoft Entra ID as both the Central Auth Server (CAS) and as the Identity Provider (IdP).
The following table displays the applications configured and their role in this example:
|
Role
|
Application
|
|---|---|
|
Service Provider
|
ThingWorx
|
|
Central Auth Server
|
Microsoft Entra ID
|
|
Identity Provider
|
Microsoft Entra ID
|
|
Resource Server
|
A Resource Server Application
|
The following diagram displays the configuration discussed in this example.
 | Currently, Microsoft Entra ID B2B and Microsoft Entra ID Government are supported. Microsoft Entra ID B2C will be supported in a future release. |