简体繁体中英

Is it possible to use authentication by OIDC and provisioning of users/groups by SCIM at the same time?

原文 2023-01-17 09:31:05 3 1 azure-active-directory/ openid-connect/ scim

I have a question about Azure Active Directory.

Is it possible to use authentication by OIDC and provisioning of users/groups by SCIM at the same time?

We are developing a scratch application and would like to use Open ID Connect for authentication, but we would like to store user/group information within the application and would like to use SCIM provisioning to solve this issue. We wanted to solve this problem by provisioning with SCIM.

However, it appears that if we want to use SCIM provisioning, we need to register our own application as an enterprise application.

On the other hand, if I register it as an enterprise application, I can't seem to use OIDC as a single sign-on method.

Based on the above, it seems to me that OIDC and SCIM cannot be used together, is that correct?

Regards, Keiichi Hikita

I wanted to register my own application as an enterprise application, so I chose to register an enterprise application
Select SSO method
Only SAML is shown
Register as just an application
Authentication with OIDC seems to work.
But this time, I can't register provisioning settings by SCIM in the provisioning menu.

These are the reasons for the above question.

1 answers

I believe you will need to create two applications - one for OIDC-based SSO, and a second one that is marked as SAML but does not have any SAML/SSO configured, but instead is just used for the SCIM provisioning configuration.

Error while assigning admin role to SCIM provisioned AAD groups in Databricks

Unable to add in bulk the guest users to AAD groups, whereas I can add them manually one at a time

Organizing groups in Firebase Authentication on Swift

in textformField how to use initialValue and controller both at same time?

How to use the same IAM role for two node groups in an EKS cluster in Terraform?

Is it possible to send a SMS contain one-time-token to specific phone number through Firebase Authentication?

AWS Find all groups/users that have access to a specific role

Blazor WASM - OIDC Authentication - There was an error trying to log you in: 'Cannot read properties of undefined (reading 'redirectUri')'

Is it possible to assign permissions automatically to groups for newly created components in Databricks?

Cloud Firestore Database is not displaying users after authentication?

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Error while assigning admin role to SCIM provisioned AAD groups in Databricks Unable to add in bulk the guest users to AAD groups, whereas I can add them manually one at a time Organizing groups in Firebase Authentication on Swift in textformField how to use initialValue and controller both at same time? How to use the same IAM role for two node groups in an EKS cluster in Terraform? Is it possible to send a SMS contain one-time-token to specific phone number through Firebase Authentication? AWS Find all groups/users that have access to a specific role Blazor WASM - OIDC Authentication - There was an error trying to log you in: 'Cannot read properties of undefined (reading 'redirectUri')' Is it possible to assign permissions automatically to groups for newly created components in Databricks? Cloud Firestore Database is not displaying users after authentication?

Related Tags

Is it possible to use authentication by OIDC and provisioning of users/groups by SCIM at the same time?

Question

1 answers

solution1 0 2023-01-17 16:20:01

solution1
0 2023-01-17 16:20:01