Add/Update the objectSID SCIM Attribute in Microsoft Azure AD
  • 28 Mar 2024
  • 1 Minute to read
  • Dark
  • PDF

Add/Update the objectSID SCIM Attribute in Microsoft Azure AD

  • Dark
  • PDF

Article summary

Prior to adding SCIM attributes, you must contact your Axiad Customer Success representative, or our Customer Success team (, to discuss your organization's integration.

The following instructions are a guide to update the SCIM mapping in Azure Active directory to add the object security identifier (object SID).

Note that this process will start a resynchronization of all users in scope for SCIM. The potential impact would be a delay in any SCIM synchronization tasks for pending user changes, or new users, while the full resynchronization is taking place.

To Add/Update a SCIM Attribute in Microsoft Azure

We recommend you check Microsoft's official documentation for the most up-to-date procedures.
  1. Open a browser and navigate to the Azure Portal (
  2. Sign into the Azure AD tenant that has the SCIM connection to your Axiad Cloud environment.
  3. Click Enterprise applications in the left navigation.
  4. Search for the Axiad Cloud SCIM application that exists in your Azure AD.
    The name of the application is set when it was added to Azure AD. We recommend you search for Axiad.
    If there are no results you may have to review each application to determine which one is the SCIM application for your Axiad Cloud environment.
  5. From the search results, select the applicable Axiad Cloud application.
  6. In the Manage section in the left navigation pane, click Provisioning.
    The Provisioning page opens.
  7. At the top of the page, click Edit provisioning.
  8. Expand the Mappings section.
  9. Click Provision Azure Active Directory Users.
  10. Check the Show advanced options box.
    The Advanced options display.
  11. Click the Edit attribute list <application name> link.
    The attribute displays.
  12. Scroll to the bottom and enter urn:ietf:params:scim:schemas:extension:CustomExtensionName:2.0:User:objectSid
  13. Ensure the Type is set to String.
  14. Click Save at the top of the page.
    A confirmation message displays.
  15. Click Yes to confirm the changes.
  16. At the bottom of the Attribute list, click Add New Mapping and select the following:
    • Source attribute: onpremisessecurityidentifier
    • Target attribute: urn:ietf:params:scim:schemas:extension:CustomExtensionName:2.0:User:objectSid (as defined in step 12)
  17. Click Ok.
  18. Click Save.
    A confirmation message displays.
  19. Click Yes to confirm the changes and start a resynchronization of all users.
  20. When the updates complete, close your browser and notify your Axiad team that the SCIM resynchronization is in process. Axiad will then monitor Axiad user accounts for object SID attribute updates.

Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.