Set-up SCIM for Azure

Pre-requisites

• Admin access to FenixPyre admin dashboard

• SAML SSO is already setup on FenixPyre dashboard

• Admin access to Azure active directory portal or Okta portal

Note- During set up, your identity provider will ask for an API token created through the OAuth 2.0 flow.

How to Set Up SCIM with Azure AD

• Navigate to SCIM Settings:

  • Go to Settings -> Security -> Identity and Provisioning.

  • Select SCIM.

• Set Up SCIM:

  • Click on "Set-up SCIM".

• Select Directory Provider:

  • From the "Select your directory provider" menu, choose Azure AD.

• Give Your Application a Descriptive Name:

  • Ensure your application has a clear and descriptive name for easy identification.

• Continue Setup in FenixPyre:

  • On the FenixPyre dashboard, click “Continue to Next Step”.

  • Copy the provided Endpoint and Bearer Token.

• Paste Endpoint and Token in Azure:

  • In the Azure Admin portal, navigate to the provisioning screen where you previously enabled provisioning(Check Prerequisite's document).

  • Paste the Endpoint and Bearer Token into the respective fields.

• Test Connection:

  • Click on Test Connection to ensure the details are correct and the connection is successful.

• Save Configuration:

  • Click Save to save the provisioning configuration in the Azure Admin portal.

• Configure User Attributes:

  • On the same page, scroll down to find “Provision Azure Active Directory Users”.

  • Click on the attribute with externalId.

  • Change the value from mailNickname to objectId.

  • Ensure the attributes are mapped correctly

  • Save the attributes

• Return to FenixPyre Portal:

  • Go back to the FenixPyre portal and click on “Continue to Next Step”.

• Verify and Continue:

  • Verify the details on the page and click on “Continue to Next Step” again.

• Start Sync:

  • Click on “Start Sync” to begin the synchronization process.

• Add Users in Azure:

  • In the Azure portal, go to the "Users and Groups" tab.

  • Click on Add User.

  • Select None Selected.

• Choose the users/groups to be added to the application.

• Click on the "Provision on Demand" tab.

• Select your user/group and click Provision.

• Verify Success:

  • The success screen should be visible on the FenixPyre dashboard.

  • You will also see SCIM marked as active in the SCIM tab.