- 13 Dec 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Add / Update the objectSID SCIM Attribute in Microsoft Entra ID
- Updated on 13 Dec 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
IMPORTANT
Prior to adding SCIM attributes, you must contact your Axiad Customer Success representative or our Customer Success team (customer.success@axiad.com) to discuss your organization's integration.
The following instructions are a guide to update the SCIM mapping in Entra ID to add the object security identifier (object SID).
Note
This process will start a resynchronization of all users in scope for SCIM. The potential impact would be a delay in any SCIM synchronization tasks for pending user changes, or new users, while the full resynchronization is taking place.
To Add/Update a SCIM Attribute in Microsoft Entra ID
Tip
We recommend you check Microsoft's official documentation for the most up-to-date procedures.
Open a browser and navigate to the Entra ID Portal.
Sign into the Entra ID tenant that has the SCIM connection to your Axiad Conductor environment.
Click Enterprise applications in the left navigation.
Search for the Axiad Conductor SCIM application that exists in your Entra ID.
Note
The name of the application is set when it was added to Entra ID. We recommend you search for Axiad.
If there are no results, then you may have to review each application to determine which one is the SCIM application for your Axiad Conductor environment
From the search results, select the applicable Axiad Conductor application.
In the Manage section in the left navigation pane, click Provisioning.
At the top of the page, click Edit provisioning.
Expand the Mappings section.
Click Provision Entra ID Users.
Check the Show advanced options box.
The Advanced options display.
Click the Edit attribute list <application name> link.
The attribute displays.
Scroll to the bottom and enter
urn:ietf:params:scim:schemas:extension:CustomExtensionName:2.0:User:objectSid
Ensure the Type is set to String.
Click Save at the top of the page.
A confirmation message displays.
Click Yes to confirm the changes.
At the bottom of the Attribute list, click Add New Mapping and select the following:
Source attribute:
onpremisessecurityidentifier
Target attribute:
urn:ietf:params:scim:schemas:extension:CustomExtensionName:2.0:User:objectSid
(as defined in step 12)
Click Ok.
Click Save.
A confirmation message displays.
Click Yes to confirm the changes and start a resynchronization of all users.
When the updates complete, close your browser and notify your Axiad team that the SCIM resynchronization is in process. Axiad will then monitor Axiad user accounts for object SID attribute updates.