Set-up SCIM for Azure

Pre-requisites

  • Admin access to FenixPyre admin dashboard

  • SAML SSO is already setup on FenixPyre dashboard

  • Admin access to Azure active directory portal or Okta portal

Note- During set up, your identity provider will ask for an API token created through the OAuth 2.0 flow.

How to Set Up SCIM with Azure AD

  • Navigate to SCIM Settings:

    • Go to Settings -> Security -> Identity and Provisioning.

    • Select SCIM.

  • Set Up SCIM:

    • Click on "Set-up SCIM".

  • Select Directory Provider:

    • From the "Select your directory provider" menu, choose Azure AD.

scim_ad.png
  • Give Your Application a Descriptive Name:

    • Ensure your application has a clear and descriptive name for easy identification.

scim_10.png
  • Continue Setup in FenixPyre:

    • On the FenixPyre dashboard, click “Continue to Next Step”.

    • Copy the provided Endpoint and Bearer Token.

  • Paste Endpoint and Token in Azure:

    • In the Azure Admin portal, navigate to the provisioning screen where you previously enabled provisioning(Check Prerequisite's document).

    • Paste the Endpoint and Bearer Token into the respective fields.

  • Test Connection:

    • Click on Test Connection to ensure the details are correct and the connection is successful.

  • Save Configuration:

    • Click Save to save the provisioning configuration in the Azure Admin portal.

  • Configure User Attributes:

    • On the same page, scroll down to find “Provision Azure Active Directory Users”.

    • Click on the attribute with externalId.

    • Change the value from mailNickname to objectId.

    • Ensure the attributes are mapped correctly

    • Save the attributes

  • Return to FenixPyre Portal:

    • Go back to the FenixPyre portal and click on “Continue to Next Step”.

  • Verify and Continue:

    • Verify the details on the page and click on “Continue to Next Step” again.

  • Start Sync:

    • Click on “Start Sync” to begin the synchronization process.

  • Add Users in Azure:

    • In the Azure portal, go to the "Users and Groups" tab.

    • Click on Add User.

    • Select None Selected.

  • Choose the users/groups to be added to the application.

  • Click on the "Provision on Demand" tab.

  • Select your user/group and click Provision.

  • Verify Success:

    • The success screen should be visible on the FenixPyre dashboard.

    • You will also see SCIM marked as active in the SCIM tab.

Last updated

Was this helpful?