IDTA Identity Provider
The IDTA Identity Provider is the identity service for the AAS ecosystem. It follows open standards to issue tokens, accept X.509 client certificates, and federate Microsoft Entra ID accounts, giving data providers and consumers a consistent identity layer without extra middleware.
Authentication options
Both methods share the same access policies in IDTA Identity Provider. Choose the credential that best matches your environment.
Upload a client certificate. The platform validates the leaf and chain against the root and intermediate authorities you registered.
Redirect users to Azure AD for LOGIN and return to IDTA Identity Provider for token issuance. Keeps existing conditional access and MFA policies intact.
Core capabilities
Identity building blocks for industrial software that need predictable behavior.
OAuth 2.0 & OpenID Connect
Issue access and refresh tokens with scoped permissions.
- Access token generation
- Refresh token rotation
- Scope-based permissions
Token introspection
Query token state without sharing signing keys.
- Token validation API
- Metadata extraction
- Cross-service verification
Identity lifecycle
Track users, certificates, and audit evidence in one place.
- Certificate lifecycle
- User provisioning
- Audit logging