System for Cross-domain Identity Management (SCIM)

System for Cross-domain Identity Management (SCIM) is an open standard that allows exchange of user identity information between two systems. In this case, you will exchange the user identity information between the identity provider and MoEngage. 

Operations Allowed:

1. Create Users on MoEngage using the Identity Provider

2. Update user info (role) on MoEngage using the Identity Provider

3. Get the list of all users on MoEngage along with their info

4. Revoke a user's access to MoEngage using the Identity Provider

 

library_add_check

Prerequisites

SSO should be configured.

info

Information

  • Only a user with access to “Setup & Manage” for the Login settings can enable SCIM on MoEngage.
  • The SCIM access token will expire after the validity you set is over. You must generate a new access token after that and update the same in the identity provider’s settings. It is advisable to generate it for a longer duration, for example, 1 year.
  • After you enable SCIM, all User Management operations (except Unblock User) on the MoEngage dashboard are disabled.

Configure SCIM

  1. Navigate to the MoEngage Dashboard and select Settings > General settings > Security > Login from the left navigation.
  2. Turn the Enable SCIM Provisioning toggle on.
    SCIM1.png
  3. In the Base Connector URL field, copy the URL and paste it in your identity provider’s settings.
    SCIM2.png
  4. From the Default role drop-down list, select the required role.
    info

    Information


    This role is used as a fallback value if the identity provider does not assign any role value to the user.
    SCIM3.png
  5. In the Expiry date field, select the expiry date for the SCIM access token.
    info

    Information


    The SCIM access token will expire after the validity you set is over. You must generate a new access token after that and update the same in the identity provider’s settings. It is advisable to generate it for a longer duration, for example, 1 year.

    SCIM4.png
  6. Click Generate Access Token. The Generate access token pop-up window is displayed.
    SCIM5.png
  7. Copy the access token and paste it in your identity provider’s settings.
    info

    Information


    You can view the access token only once so ensure that you copy it.

    SCIM6.png
  8. After you enter the Base Connector URL and Access Token in your identity provider’s settings successfully, the SCIM status on MoEngage changes from Inactive:
    SCIM7.png
    To Active:
    SCIM8.png

Was this article helpful?
0 out of 0 found this helpful

How can we improve this article?