This topic describes how to provision the account information to the application in the IDaaS console.

Background

Before you push account information to the SP application, IT administrators must make SCIM configurations.

SCIM provisioning must be configured and enabled so that the IDaaS console pushes account information to SP applications. The same rule applies to account groups and organizations. If you want the IDaaS console to provision the information of both accounts and account groups to SP applications, you must configure and enable SCIM provisioning for both accounts and account groups.

Procedure

  1. Log on to the IDaaS console as an IT administrator. For more information, see Logon in Administrator Guide.
  2. In the left-side navigation pane, choose Applications > Application List.
  3. Find the target application and click Details in the Actions column.

  4. In the Account Information - Provision section, click Configure SCIM.
    Note If the Account Information - Application Accounts section is displayed, click Provision to switch to the Account Information - Provision section.
  5. On the Configure SCIM page, click the tab to select the target object to be provisioned and configure the parameters.

    The following objects can be provisioned: accounts and organizations. Here the console acts as a client to provision account information to third-party business systems.

    Parameter Description
    Application Name The application with provisioning configured.
    SCIM Service URL The URL to receive account information, such as http://jzyt.idp-local.com/api/application/cs_multibrowser/scim/account_password.
    Enable Specifies whether to enable SCIM provisioning. If you turn on this switch, the organization will be pushed to authorized applications when you manually push an organization.
    Protocol Type The type of the authentication protocol used to verify requests. Valid values:
    • Basic
    • OAuth2
    Username If the Protocol Type is set to Basic, enter the administrator username.
    Password If the Protocol Type is set to Basic, enter the administrator password.
    oauth url If the Protocol Type is set to OAuth2, enter the OAuth URL.
    client_id If the Protocol Type is set to OAuth2, enter the client ID.
    client_secret If the Protocol Type is set to OAuth2, enter the client key.

  6. Click Save.