The material provided is for informational purposes only, and should not be relied on in making any purchasing or investment decision. The information is not a commitment, promise or legal obligation to deliver any material, code, or functionality. The development, release, and timing of any features or functionality described for our products remains at our sole discretion. © 2026 Cloud Software Group, Inc. All rights reserved
Hi Adil,
It should be fairly straight forward, with Spotfire 7.8 and later. Here's an article outlining the process: https://support.tibco.com/s/article/How-to-configure-openID-connect-authentication-with-Azure-in-Spotfire
There's unfortunately no out-of-the-box support for synchronization of group memberships or such (the Spotfire Server doesn't have dedicated Azure AD support but support for OpenID Connect - which doesn't specify how to handle groups) but that can for example be implemented using a custom PostAuthenticationFilter (or by using the User Directory Web Service API).
Hi Jens,
We didn’t succeed on impleenting azure authentication in our environment (Spotfire 7.10).
Tibco support team told us the only way to use azure authentication is to implement Kerberos sso.
Can you share details on implementation please.
thanks and regards.
The Spotfire Server supports OpenID Connect authentication - which may be used towards Azure AD (regardless of how the users are authenticated there, multi-factor or not). The Android and iOS apps works well with this authentication mechanism.