diff --git a/.github/workflows/opex_api_pnpg.yml b/.github/workflows/opex_api_pnpg.yml
new file mode 100644
index 00000000..82c5e98f
--- /dev/null
+++ b/.github/workflows/opex_api_pnpg.yml
@@ -0,0 +1,64 @@
+name: Opex Dashboard B4f Onboarding PNPG
+
+# Controls when the workflow will run
+on:
+  push:
+    branches:
+      - main
+    paths:
+      - '.github/workflows/opex_api.yml'
+      - '.opex/api-selfcare-onboarding-pnpg/**'
+  workflow_dispatch:
+
+env:
+  TEMPLATE_DIR: azure-dashboard
+  ARM_USE_OIDC: true
+  ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID_CD }}
+  ARM_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }}
+  ARM_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+  API_NAME: api-selfcare-onboarding-pnpg
+  DOCKER_IMAGE_TAG: sha256:04d8ead53c772d23b094c2a395292dc159e6f2905e1b13b5f828f31eac6eb27f
+
+permissions:
+  id-token: write
+  contents: read
+
+# A workflow run is made up of one or more jobs that can run sequentially or in parallel
+jobs:
+  build:
+    # The type of runner that the job will run on
+    runs-on: ubuntu-22.04
+
+    environment: 'prod-cd'
+
+    # Steps represent a sequence of tasks that will be executed as part of the job
+    steps:
+      - name: Checkout
+        id: checkout
+        # from https://github.com/actions/checkout/commits/main
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
+        with:
+          persist-credentials: false
+          fetch-depth: 0
+
+      - name: Read terraform version
+        id: read-version
+        shell: bash
+        run: |
+          echo "TERRAFORM_VERSION=`cat .terraform-version`" >> $GITHUB_ENV
+
+      - name: Setup Terraform
+        # from https://github.com/hashicorp/setup-terraform/commits/main
+        uses: hashicorp/setup-terraform@69c00852f1304c321337f45a105731218c2d5544
+        with:
+          terraform_version: ${{ env.TERRAFORM_VERSION }}
+
+      - uses: pagopa/opex-dashboard-azure-action@3ad80a5e4a2d5a8f342615637072f21b687320ce
+        with:
+          environment: prod
+          api-name: ${{ env.API_NAME }}
+          config: .opex/${{ env.API_NAME }}/env/prod/config.yaml
+          client-id: ${{ secrets.AZURE_CLIENT_ID_CD }}
+          tenant-id: ${{ secrets.AZURE_TENANT_ID }}
+          subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          docker-version: ${{ env.DOCKER_IMAGE_TAG }}
diff --git a/.opex/api-selfcare-onboarding-pnpg/env/prod/backend.ini b/.opex/api-selfcare-onboarding-pnpg/env/prod/backend.ini
new file mode 100644
index 00000000..dc3318a8
--- /dev/null
+++ b/.opex/api-selfcare-onboarding-pnpg/env/prod/backend.ini
@@ -0,0 +1 @@
+subscription=PROD-SelfCare
diff --git a/.opex/api-selfcare-onboarding-pnpg/env/prod/backend.tfvars b/.opex/api-selfcare-onboarding-pnpg/env/prod/backend.tfvars
new file mode 100644
index 00000000..c94e844a
--- /dev/null
+++ b/.opex/api-selfcare-onboarding-pnpg/env/prod/backend.tfvars
@@ -0,0 +1,4 @@
+resource_group_name  = "terraform-state-rg"
+storage_account_name = "tfappprodselfcare"
+container_name       = "terraform-state"
+key                  = "opex.b4f-onboarding-pnpg.tfstate"
diff --git a/.opex/api-selfcare-onboarding-pnpg/env/prod/config.yaml b/.opex/api-selfcare-onboarding-pnpg/env/prod/config.yaml
new file mode 100644
index 00000000..dcad9f3e
--- /dev/null
+++ b/.opex/api-selfcare-onboarding-pnpg/env/prod/config.yaml
@@ -0,0 +1,11 @@
+oa3_spec: app/src/main/resources/swagger/api-docs.json
+name: opex_api-onboarding-pnpg
+location: West Europe
+timespan: 30m # Default, a number or a timespan https://docs.microsoft.com/en-us/azure/data-explorer/kusto/query/scalar-data-types/timespan
+data_source: /subscriptions/813119d7-0943-46ed-8ebe-cebe24f9106c/resourceGroups/selc-p-vnet-rg/providers/Microsoft.Network/applicationGateways/selc-p-app-gw
+action_groups:
+  - /subscriptions/813119d7-0943-46ed-8ebe-cebe24f9106c/resourceGroups/selc-p-monitor-rg/providers/microsoft.insights/actionGroups/PagoPA
+  - /subscriptions/813119d7-0943-46ed-8ebe-cebe24f9106c/resourceGroups/selc-p-monitor-rg/providers/microsoft.insights/actionGroups/SlackPagoPA
+overrides:
+  hosts: # Use these hosts instead of those inside the OpenApi spec
+    - api-pnpg.selfcare.pagopa.it
diff --git a/.opex/api-selfcare-onboarding-pnpg/env/prod/terraform.tfvars b/.opex/api-selfcare-onboarding-pnpg/env/prod/terraform.tfvars
new file mode 100644
index 00000000..e003ec72
--- /dev/null
+++ b/.opex/api-selfcare-onboarding-pnpg/env/prod/terraform.tfvars
@@ -0,0 +1,11 @@
+prefix    = "selc"
+env       = "prod"
+env_short = "p"
+
+tags = {
+  CreatedBy   = "Terraform"
+  Environment = "Prod"
+  Owner       = "SelfCare"
+  Source      = "https://github.com/pagopa/selfcare-onboarding-backend"
+  CostCenter  = "TS310 - PAGAMENTI & SERVIZI"
+}