Adding a Windchill Repository using OAuth

Please review Appendix G1 - Configuring Windchill for OAuth with Ping Federate for specific Windchill and Ping Federate configurations.

Please review Windchill Repositories for general prerequisites, background, and tutorials. This content continues from there with Step (3).

(3) Fill out the details for your Windchill server (repository), as shown below, and click the Create button.

  • URL - Base URL of your Windchill repository

  • Name - Name of the Windchill repository. Provide a unique name to distinguish this Windchill repository from others you may add.

  • Description - Description of the Windchill repository

  • Authentication type - Basic or Oauth

    • the type depends on how the PTC Windchill Repository has been configured for PTC Windchill Authentication

    • this page guides you on how to add the Repository using OAuth2.

    • Visit Windchill Repositories if you are looking for how to add a Windchill Repository using Basic Auth.

Create using OAuth

Create using OAuth

 

image-20240415-210354.png

 

(4) Click Test

  • Syndeia will attempt to reach the Windchill Repository’s token server to confirm that the server at the URL is online and is configured to offer OAuth2 Device Code Grant authentication.

 

image-20240416-190658.png
Successful TEST of a Repository entry for a Windchill service configured for OAuth

(5) Click Create to add the Windchill Repository configuration.

To complete the OAuth Authentication for the user, continue through the multi-factor Device Code Grant flow.

OAuth2 Device Code Grant Multi-Factor Authentication

When the Windchill Repository was created using OAuth as the authentication protocol, you must additionally perform the Device Code Grant flow when Syndeia makes initial connection into the Windchill Repository for you.

(6) Use the Syndeia Web Dashboard Repository Manager to expand the newly added Windchill Repository instance

 

(7) Click on any one of the Libraries, Products, or Projects “Containers” to begin the OAuth2 Device Code Grant process.

(8) Click the Sign In to begin the approval

(9) Provide your Multi-factor credentials. These vary depending on the Identity Provider and company policies. Here, we show those screens for Ping Federate.

(10) Confirm that the Identity Provider is performing the Device Code Grant that you started on your Syndeia Web Dashboard

(11) Allow the Identity Provider Token Server to use your Windchill credentials.

(12) Return to Windchill Repositories to resume the process of working with a Syndeia Windchill Repository.

Having completed the authentication protocol for Windchill using OAuth2, now return to Windchill Repositories | Browse a Windchill Repository for more guidance on browsing the integrated repository.