Spotfire Ideas Portal
Add a new idea Subscribe
Status Future Consideration
Product Spotfire
Categories System Administration
Created by Guest
Created on Oct 31, 2025

RELATED IDEAS

Support Certificate-Based Credentials for OAuth2/OpenID Authentication

Spotfire currently supports OpenID Connect (OIDC) and OAuth 2.0 authentication with cloud-based identity providers such as Microsoft Entra ID (formerly Azure AD).
At present, integration with Azure requires administrators to configure the connection in the Spotfire Administration Console using client credentials (client ID and client secret).


However, according to our organization’s updated security policy, client secrets are no longer considered secure. The policy mandates the use of certificate-based credentials instead of client secrets, as outlined in Microsoft’s official guidance: https://learn.microsoft.com/en-us/entra/identity-platform/certificate-credentials


Currently, Spotfire Server does not support certificate credentials for OpenID/OAuth2.0 authentication - only client secrets.

We request that Spotfire Server be enhanced to include support for certificate-based credentials when configuring OpenID Connect / OAuth2 integrations, in alignment with modern security standards and Azure AD best practices.

  • Attach files
This document (including, without limitation, any product roadmap or statement of direction data) illustrates the planned testing, release and availability dates for Spotfire products and services. It is for informational purposes only and its contents are subject to change without notice. Planning to implement - generally 6-12 months out. Likely to Implement - generally means 12-18 months out. Copyright © 2014-2023 Cloud Software Group, Inc. All Rights Reserved. Cloud Software Group, Inc. ("Company") follows the EU Standard Contractual Clauses as per the Company's Data Processing Agreement. Terms of Use | Privacy Policy | Trademarks | Patents | Contact Us