Configure SCIM in Entra ID
  • 19 Aug 2024
  • 2 Minutes to read
  • Dark
    Light
  • PDF

Configure SCIM in Entra ID

  • Dark
    Light
  • PDF

Article summary

Once Axiad completes the SAML configuration in your Axiad Cloud tenant, continue with these steps.

  1. Sign into Entra ID as a Global administrator.

  2. Select Enterprise applications from the left menu.

  3. Search for and select the Axiad Cloud enterprise application that was created in the Configure SAML in Entra ID procedure.

Note

Axiad uses the same application for SAML and SCIM.

  1. Click Users and groups.

  2. Confirm the appropriate users and/or groups are listed that you want to provision to Axiad Cloud. If these groups are not yet set up, then see Configure SAML in Entra ID for procedures.

  3. Select Provisioning.

  4. Click Get started.

  5. From the Provisioning Mode dropdown, select Automatic.

  6. In the Tenant URL field, enter the following URL:

    https://ucms-<tenantName>.<platform>.axiadids.net/secuera/api/v3/scim/<tenantName>
  7. In the Secret Token field, enter the token Axiad provided you.

  8. Click Test Connection to confirm that it is working. If your connection fails, then reach out to Axiad support.

  9. Click Save.

  10. Expand the Mappings section.

  11. Click Provision Entra ID Directory Users.

  12. Delete all attributes other than the externalID attribute and those specified in the attribute list that is provided to you by the Axiad Customer Success team.

Note

The attribute list Axiad provides includes all attributes mapped within your Axiad Cloud tenant. You must delete all unused attributes from the SCIM mapping to avoid unnecessary data synchronizations.


See Axiad Cloud SCIM Support for details on which attributes are required for Axiad Cloud.

  1. Confirm the settings, then click Save, then Yes.

  2. Click Axiad Cloud SCIM | Provisioning in the breadcrumb link at the top of the page.

  3. The Provisioning page displays.

  4. Click Edit attribute mappings.

  5. Toggle Provisioning Status to On.

  6. Click Save.

  7. Click Axiad Cloud SCIM | Provisioning in the breadcrumb link at the top of the page.

  8. The Provisioning page displays again, and SCIM provisioning is now configured to synchronize the added users and groups. This page displays the status of the provisioning and has a link to view the provisioning logs. The synchronization is triggered every 20-40 minutes, depending on the number of users and group that are being synchronized.

Note

Entra ID SCIM synchronization does note send empty/null values for user attributes. If a user attribute was previously populated with data in Axiad Cloud via SCIM, and then that attribute is set to empty/null in Entra ID, then the change will not be sent to Axiad Cloud.

Note

If Entra ID encounters an error during SCIM provisioning, then it will reschedule that item for the next cycle and will be continually retried while also gradually scaling back the frequency of retries.

If the errors persist through retries, then the job will be put into quarantine and then stopped until an Entra ID Administrator restarts the service. See Microsoft documentation for more information.



Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.