Skip to main content
Version: v1.7.0

SCIM with AzureAD - Microsoft Entra ID

1. Prerequisite

Azure account created with sufficient subscription: Cloud Computing Service | Microsoft Azure

2. How to connect

  1. Go to your homepage of Microsoft Entra admin center: Microsoft Entra admin center Image
  2. Go to Microsoft Entra ID (formerly known as Microsoft Active Directory): Image
  3. Navigate to Enterprise applications to see all available applications: Image
  4. Create new application by New applicationCreate your own application: Image
  5. Fill in the name and select option “ Integrate any other application you don’t find in the gallery (Non-gallery) ": Image
  6. Navigate to Provisioning of created application: Image Image
  7. Config provisioning and test connection:
    1. Provisioning Mode: Automatic.
    2. Tenant URL: exposed URL to SCIM service (below example is SCIM url of AlphaSense test environment):
      1. i. Format: {domain name}/services/scim/v2
    3. Secret Token: API key of SCIM service: Retrieve Your SCIM API Key
    4. Click on Test Connection to test connection to service. Image

3. Create new user

  1. Go to UsersAll users to see all available users and click on New userCreate new user: Image
  2. Create new user - Basics:
    1. Principal name: should be unique within the system. This will be used as user id to log into your deployed AlphaSense system.
    2. Mail nickname: can derive it from user principal name.
    3. Display name: the name displayed in Microsoft Entra.
    4. Password: optionally check Auto-generate password for random password provided. Image
  3. Create new user - Properties: a. Fill in any details that needed for your system that will be synced to your deployed application. b. In below screenshots, First name, Last name, Email are provided for example. Image Image
  4. Create new user - Assignments: Image
  5. Create new user - Review + create: Image
  6. User created successfully and will be listed in All users: Image

4. Assign user to you desired application

  1. Click on Add User/Group and select the created users: Image Image Image
  2. Now user is assigned but not yet synced to the target system (your deployed application): Image
  3. By default, the sync will be periodically triggered every 4 hour.

5. (Optional) Manually trigger the sync for specific users

  1. Navigating to Provisioning section of your application: Image
  2. Select Provision on demand: Image
  3. Search for your desired user and click Provision to start the process: Image
  4. The validation and provisioning will be triggered, then the status will be shown on the left, and the information popup on the right will list all the changes that has been made on that user since the last sync: Image