Configuring SCIM with Microsoft Entra ID (previously Azure Active Directory)

Updated on Mar 01, 2024

If you are managing users through the SCIM API you may also be interested in How to manage user roles via user groups

Prerequisites

Before you can configure provisioning for ScreenSteps using Microsoft Entra ID (previously Azure Active Directory), you will need to meet the following prerequisites:

Microsoft Entra ID tenant: You will need to have an Microsoft Entra ID tenant and have administrative access to it.
ScreenSteps account: You will need to have a ScreenSteps account with the appropriate permissions to configure SCIM, and you will need to access the admin account in the ScreenSteps portal to obtain the SCIM API token and endpoint.
Microsoft Entra ID application registration: You will need to register an application in your Microsoft Entra ID tenant and configure it for provisioning with ScreenSteps.
Microsoft Entra ID user account: You will need a Microsoft Entra ID user account that has sufficient privileges to register the application and configure provisioning.

Features

The following provisioning features are supported:

Provisioning of users and groups from Microsoft Entra ID to ScreenSteps using SCIM.
1. The list of supported attributes are viewable at How to Use the SCIM User Provisioning API
Automatic updates of user and group information in ScreenSteps when changes are made in Microsoft Entra ID.
Support for both automatic and manual provisioning.
Configurable mapping of attributes between Microsoft Entra ID and ScreenSteps.
Support for multiple provisioning modes, including create, update, and delete.
Detailed logs of provisioning events and errors.
Support for custom mappings and transformations.
Flexible filtering and scoping options.