Establishing End Users
This topic provides an overview of the process for establishing end users. User accounts are maintained in your enterprise LDAP and are integrated with Windchill via Single Sign-On (SSO). Follow these steps to set up end users:
1. Configure your Identity Provider (IdP). Azure AD, ADFS, and Okta are Windchill supported identity providers.
◦ Open a cloud service request to add your IdP details to Windchill configurations. Submit the service request and include your IdP metadata.xml.
◦ Use the metadata.xml provided by Windchill to complete the IdP configuration for your system.
◦ Verify that the communication between Windchill PingFederate, or any other supported entity, configured as the service provider, and your IdP is successfully established.
2. Select the SSO protocol that is to be configured. SAML and OIDC are Windchill supported SSO protocols.
 |
Do not configure SAML and OIDC protocols simultaneously.
|
3. Confirm that SSO is active between your IdP and Windchill.
4. To add end users to Windchill database, open a service request and provide the load file.
5. To manage incremental user updates, open a service request. For more details, see PTC Cloud Portal and Opening a Service Request.