Azure Active Directory OIDC Integration Guide Overview

Pivotal Web Services End of Availability Announced
For more information, see Frequently Asked Questions.

This documentation introduces how to set up Azure Active Directory (Azure AD) with Open ID Connect (OIDC) as the identity provider for the Single Sign-On service running on Pivotal Web Services (PWS).

Azure Active Directory (Azure AD) is Microsoft’s multi-tenant cloud-based directory and identity management service.

To set up Azure AD with Security Assertion Markup Language (SAML), see the Azure Active Directory SAML Integration Guide.


To integrate Azure AD with Single Sign-On service using OIDC, you need the following:

Azure AD

  • An active Azure AD tenant

  • A user with admin privileges

Note: To configure OIDC, you must contact Pivotal to have Single Sign-On enabled for your PWS organizations through plan creation. You should be added as a plan administrator. For help configuring plans, see the Manage Service Plans topic.

Azure AD Integration Guide

Configuring Azure AD with SSO

Complete the following steps to integrate your deployment with Azure AD and SSO.

  1. Configure Azure AD as an OIDC Identity Provider

  2. Configure a Single Sign-On Service Provider

Testing and Troubleshooting