Solutions
Hardware
Software
Services
Support and Downloads
About Zebra
AD/ADFS Integration Guide for PTT Pro and Profile Manager
Configuring PTT-Pro to Support OAuth2
AD/ADFS Integration Guide for PTT Pro and Profile Manager
AD/ADFS Integration Guide for PTT Pro and Profile Manager
Objectives
Environment Description
PTT Pro Setup
Profile Manager Setup
ADFS Configuration
ADFS Server Versions
Prerequisite Information
About the Well-Known URL for ADFS
How to Find the Well-Known URL
How to Use the Well-Known URL
ADFS Setup Flows
Configuration Process Overview
Create a Relying Party Trust
Configure Relying Trust for Claim Issuance Policy
Export the Token Decrypting Certificate
Bind the Token Decrypting Certificate to the Relying Party Trust
Export Token Signing Certificate
Create the Application Group
Create a Standalone Application Group
Create Standalone Web API Application Group
Create a Web API Application Group with a Client Secret
Add Claims to the Application Group
Updating the Access and Refresh Token Lifespans
Validating the Configuration
The Well-Known URL
Using Postman
Examine the Returned Access Token
Validate the Signing Certificate
Configuring PTT-Pro to Support OAuth2
Configuring Profile Manager to Support OAuth2
External References
Revision History
Configuring PTT-Pro to Support OAuth2
Configuring PTT-Pro to Support OAuth2
Configure the PTT Pro server to use OAuth2 to authorize requests and grants through tokens between the customer’s identification provider and PTT Pro.
The OAuth2 Access URLs and the ADFS Signing Certificate token must be entered in the PTT Pro Management Portal.
Open the PTT Pro Management Portal through a Web browser and navigate to the Customer Configuration.
Click
Modify OAuth
or
Enable OAuth
.
The
Configure OAuth
dialog box appears.
Enter the OAuth URL and the Access URL.
OAuth URL example:
https://<server.domain.com>/adfs/oauth2/authorize?resource=pttpro-id
Access URL example:
https://<server.domain.com>/adfs/oauth2/token
Copy the ADFS Signing Certificate token that you previously extracted and into the Certificate field.
Click
Submit
.
The Relying Party Trust is established in the PTT Pro Server.
