Add / Update the objectSID SCIM Attribute in Microsoft Entra ID
  • 13 Dec 2024
  • 1 Minute to read
  • Dark
    Light
  • PDF

Add / Update the objectSID SCIM Attribute in Microsoft Entra ID

  • Dark
    Light
  • PDF

Article summary

IMPORTANT

Prior to adding SCIM attributes, you must contact your Axiad Customer Success representative or our Customer Success team (customer.success@axiad.com) to discuss your organization's integration.

The following instructions are a guide to update the SCIM mapping in Entra ID to add the object security identifier (object SID).

Note

This process will start a resynchronization of all users in scope for SCIM. The potential impact would be a delay in any SCIM synchronization tasks for pending user changes, or new users, while the full resynchronization is taking place.

To Add/Update a SCIM Attribute in Microsoft Entra ID

Tip

We recommend you check Microsoft's official documentation for the most up-to-date procedures.

  1. Open a browser and navigate to the Entra ID Portal.

  2. Sign into the Entra ID tenant that has the SCIM connection to your Axiad Conductor environment.

  3. Click Enterprise applications in the left navigation.

  4. Search for the Axiad Conductor SCIM application that exists in your Entra ID.

Note

The name of the application is set when it was added to Entra ID. We recommend you search for Axiad.

If there are no results, then you may have to review each application to determine which one is the SCIM application for your Axiad Conductor environment

  1. From the search results, select the applicable Axiad Conductor application.

  2. In the Manage section in the left navigation pane, click Provisioning.

  3. At the top of the page, click Edit provisioning.

  4. Expand the Mappings section.

  5. Click Provision Entra ID Users.

  6. Check the Show advanced options box.

  7. The Advanced options display.

  8. Click the Edit attribute list <application name> link.

  9. The attribute displays.

  10. Scroll to the bottom and enter urn:ietf:params:scim:schemas:extension:CustomExtensionName:2.0:User:objectSid

  11. Ensure the Type is set to String.

  12. Click Save at the top of the page.

  13. A confirmation message displays.

  14. Click Yes to confirm the changes.

  15. At the bottom of the Attribute list, click Add New Mapping and select the following:

    • Source attribute: onpremisessecurityidentifier

    • Target attribute: urn:ietf:params:scim:schemas:extension:CustomExtensionName:2.0:User:objectSid (as defined in step 12)

  16. Click Ok.

  17. Click Save.

  18. A confirmation message displays.

  19. Click Yes to confirm the changes and start a resynchronization of all users.

  20. When the updates complete, close your browser and notify your Axiad team that the SCIM resynchronization is in process. Axiad will then monitor Axiad user accounts for object SID attribute updates.


Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.