Skip to main content
Version: 2.0.0

SCIM Integration with Permit.io via Entra ID (Azure AD)

Connecting SCIM with Permit.io

This guide will walk you through integrating SCIM with Permit.io using Entra ID (Formerly Azure Active Directory). SCIM (System for Cross-domain Identity Management) allows you to manage user identities seamlessly across systems.

WARNING

Using "Provision on-demand" feature in Entra ID has known limitations, therefore we recommend using "Automatic" provisioning mode. To read more about "Provision on-demand" known limitations, click here.

Prerequisites

Before you start, ensure you have the following:

Configuring Entra ID with SCIM

  1. Log in to your Entra ID account.
  2. Click on the Enterprise applications tab under the Applications section.

Entra ID


  1. Click on the New application button. Entra ID


  2. Click on the Create your own application button. Entra ID


  3. Enter the name of the application and click on the Create button. Entra ID


  4. (Optional) Add users and groups to the application in the Users and groups tab. Entra ID


  5. Now on the Provisioning tab, click on the Get started button and select the Automatic Provisioning mode. Entra ID


  6. Enter the following details:

Tenant URL: https://scim.permit.io/scim/v2/{permit_project_id}/{permit_env_id}

  • Optional: base URL for EU users https://scim.eu-central-1.permit.io/scim/v2/{permit_project_id}/{permit_env_id}.
info

Replace {permit_project_id} and {permit_env_id} with your Permit project ID/Key and environment ID/Key respectively

Secret Token: Your Permit API Key - (How to get Permit API Key) Permit API Key


  1. Click on the Test Connection button to verify the connection, then click on the Save button.

Testing the SCIM Integration

You can now test the SCIM integration by creating a new user in Entra ID and verifying if the user is created in Permit.io.

  1. Create a new user in Entra ID and assign it to the application you created - following step 6 from before.

  2. After clicking on the Provisioning tab, go to Provision on demand.

  3. There, you can provision the user to Permit.io by searching the user and clicking on the Provision button. Entra ID


  4. You can take a look at the Provisioning logs to see the status of the user provisioning. Entra ID


  5. You can also verify the user in the Permit dashboard - and as you can see, the user has been successfully created ! Permit User