Bentley Communities
Bentley Communities
  • Site
  • User
  • Site
  • Search
  • User
Licensing, Cloud and Web Services
  • Welcome to Bentley Communities
  • Bentley's Communities
  • Licensing, Cloud and Web Services
  • Cancel
Licensing, Cloud and Web Services
Licensing, Cloud and Web Services Wiki Configuring OIDC with other Identity Providers
    • Sign In
    • Contacting Entitlements Support (Licensing and User Management)
    • Eastern Europe Continuity Plan
    • Guest Accounts - Review Access
    • +Web Services
    • +SES Activation
    • +CONNECTION Client
    • +CONNECT Advisor
    • -Federated Identity
      • Federation Frequently Asked Questions
      • Configuring your Azure AD for OIDC Federation and Automatic User Provisioning
      • Configuring Microsoft Azure AD for B2B Guest Users Using OIDC
      • Configuring Okta for OIDC federation
      • Configuring OIDC with other Identity Providers
      • Configuring Microsoft Azure AD for SAML 2.0 federation
      • Configuring Azure AD for OIDC federation
      • Configuring Microsoft ADFS for SAML 2.0 federation
      • Configuring SAML 2.0 with other Identity Providers
      • +Certificate and Secret Rotations
      • Browser and App Token Lifetimes
      • +IMS Help and Troubleshooting
      • +Microsoft Azure AD Automatic User Provisioning Configuration
    • +SELECTserver based Activation
    • +Pre-SELECTserver Based Activation
    • +Product-Specific Licensing
    • Understanding why you received a TL Invoice
    • Working from Home using Bentley Licensing
    • What you need to know/request when consolidating Accounts
    • +Licensing Workflow
    • How to leave a Product Review
    • +Serviços ProjectWise 365
    • About Bentley Trust Licensing
    • Customer Number, Account Number, Entitlements, Users
    • Support for non-Bentley technologies utilized by Bentley products
    • Support for V8i applications after December 31st, 2021
    • +Support Homepage - Localized

    Configuring OIDC with other Identity Providers

    Note: If you use Azure AD for your Identity Provider, we have step-by-step instruction for setting up your OIDC connection found here.

    Note: It is required that a user have a valid country code in your directory in order to federate. We use this information to determine proper entitlements, billing, taxes, and more. 

    Your Token Provider Information

    Parameter

    Value

    Issuer/Authority

    https://login.microsoftonline.com/{tenant}/v2.0 [Azure Example]

    Discovery URI

    /.well-known/openid-configuration

    Client ID

    Typically, OAuth token Provider will create an OAuth client, will be needed to receive and validate JWT tokens

    Client Secret

    Typically, OAuth token Provider will create an OAuth secret, will be needed to receive and validate JWT tokens

    Scopes

    Provide what scope needs to be requested to receive user information

    For example, openid profile

    OpenID Login Type

    Code & Code_Challenge_Method=S256

    Note: Code_Challenge requires PKCE to be enabled at your identity provider.

    Authentication Method

    POST (This is the method PingFederate will use to perform client authentication)

    Authorization Endpoint

    <optional if discovery url provided>

    Token Endpoint

    <optional if discovery url provided>

    UserInfo Endpoint

    <optional if discovery url provided>

    JWKS Endpoint

    <optional if discovery url provided>

    Token Attributes

    emailAddress OR upn (depending on your identifier)

    givenName

    lastName

    country

    name

    sub

     Bentley OIDC / OAuth Service Provider Details

    Parameter

    Value

    Redirect URI

    Bentley will Provide once Token Provider is registered (unique_id is dynamically generated)
    https://ims.bentley.com/sp/{unique_id}/cb.openid

    • Federation
    • oidc
    • OpenID
    • Share
    • History
    • More
    • Cancel
    • Drew Brune Created by Drew Brune
    • When: Wed, Oct 7 2020 4:21 PM
    • Chris Carter Last revision by Bentley Colleague Chris Carter
    • When: Mon, Jul 17 2023 11:10 AM
    • Revisions: 11
    • Comments: 0
    Recommended
    Related
    Communities
    • Home
    • Getting Started
    • Community Central
    • Products
    • Support
    • Secure File Upload
    • Feedback
    Support and Services
    • Home
    • Product Support
    • Downloads
    • Subscription Services Portal
    Training and Learning
    • Home
    • About Bentley Institute
    • My Learning History
    • Reference Books
    Social Media
    •    LinkedIn
    •    Facebook
    •    Twitter
    •    YouTube
    •    RSS Feed
    •    Email

    © 2023 Bentley Systems, Incorporated  |  Contact Us  |  Privacy |  Terms of Use  |  Cookies