Submit a request

Articles in this section

See more

Azure Active Directory User Provisioning Integration (SCIM)

Avatar
Support Manager
  • Updated
Follow

Configure SCIM user provisioning

Using the Azure Active Directory User Provisioning Integration (SCIM) allows your organization to simplify your User Provisioning by eliminating the need to do manual, duplicate entry of employee information. 

To provision Azure user accounts using SCIM, perform the following steps: 

1. In Azure or the Office 365 Admin centre,  click Azure Active Directory.

2. From the left navigation pane, click Enterprise Applications.

3. From the left navigation pane and under Manage > All Applications, click New Application.

Screen_Shot_2021-06-04_at_11.09.48_AM.png

4. In the Browse Azure AD Gallery page select Create your own applicationScreen_Shot_2021-06-04_at_11.10.03_AM.png

5. In the resulting screen, name the new app and select Integrate any other application you don't find in the gallery (Non-gallery)

Screen_Shot_2021-06-04_at_11.17.24_AM.png

6. After creating your app go back to the Enterprise Applications page. Select your new app and then select Provisioning from the left menu.

Screen_Shot_2021-06-04_at_11.18.57_AM.png

7. In the next screen select Get Started.

Screen_Shot_2021-06-04_at_11.19.12_AM.png

8. In the Provisioning window, select Automatic as your Provisioning Mode. Afterwards copy the following URL into the Tenant URL followed by copying the required Secret Token into the Secret Token field. You can get the token from Kudos Admin panel's API tab as shown below.

https://api.kudosnow.com/scim/v2/?aadOptscim062020

Screen_Shot_2021-06-04_at_11.20.58_AM.png

Screen_Shot_2021-06-07_at_1.08.33_PM.png

9. Click Test connection. If the connection is successful, you can change select Save and then Start Provisioning on the following screen.

10. The next step is to assign users and groups to the the SCIM app in order to sync user's data.

11. Finally all fields being sent to Kudos can be left at Azure AD defaults or adjusted to target the specific attribute you wish to send. This can be done in the Provisioning Tab by selecting Edit Attribute MappingsProvision Azure Active Directory Users and then adjusting any of the mappings in the following screen. One field that will need to be added to fully provision users is a "Managers Email" field as shown below.

Screen_Shot_2021-06-04_at_11.33.16_AM.png

 

Note that it may take 1-2 hours before the initial provisioning process will begin to send requests to the Kudos SCIM endpoint. After this initial sync all future syncs are carried out daily overnight. A summary of connection attempts is provided on the application’s Overview tab, and both a report of provisioning activity and any provisioning errors can be downloaded.

 

We hope this helps! If you have any questions, please reach out to us at support@kudos.com and one of our friendly staff will be happy to assist you.

Related articles

Comments

0 comments

Article is closed for comments.