SCIM 2.0 Service Provider

This information is still applicable to v6

The SCIM standard was created to simplify user management in the cloud by defining a schema for representing users and groups and a REST API for all the necessary CRUD operations. See spec

Example

To enable the SCIM end-point Vidyano will require an authenticated request, the passed bearer token will need to be checked in the AuthenticatorService class. The easiest way would be to provide a single custom setting that contains the token so that it can be checked.

public override bool CheckScimCredentials(ScimCredentials credentials)
{
    var setting = Manager.Current.GetSetting("ScimBearerToken");
    return !string.IsNullOrEmpty(setting) && setting == credentials.Token;
}

Other scenarios could be created by storing multiple tokens in the database.

Azure AD

Azure can be configured to sync the AD users with your Vidyano application: Using System for Cross-Domain Identity Management to automatically provision users and groups from Azure Active Directory to applications

Tenant URL is the url of the application (e.g. for the demo application the tenant url is https://demo.vidyano.com/ )

For the mapping we recommended the following settings: Groups

Users