How to set up SCIM with Okta

This article provides an overview of how to set up SCIM within the Okta Identity Provider.

Configure SCIM in Okta

1. Login to your Okta Org as the Super Admin.
2. Go to Applications > Applications > Browse App Catalog.
3. Search for SCIM > Click See All Results.
4. Select SCIM 2.0 Test App (OAuth Bearer Token) > Add Integration.
5. Add an Application label (ex. SCIM 2.0 Templafy App (OAuth Bearer Token)) > Click Next > Click Done.
   
   
   
6. Go to Provisioning > Select Configure API Integration > Check Enable API integration.
7. Fill out the SCIM 2.0 Base Url and OAuth Bearer Token:
   • SCIM 2.0 Base Url format is - https://[templafytenantid].api.templafy.com/v1/scim/. 
   • The Secret token is available when creating the SCIM API key in the Templafy tenant.
8. Click Test API Credentials to verify the configuration > Click Save.

Configure Provisioning Tab

1. Within the Provisioning tab, select To App > Edit.
2. Check the boxes for Create Users and Update User Attributes > Click Save.                                                                                                                                                                    

   Note It is not possible to de-provision users with the Okta SCIM application. The reason is that Okta does not perform a delete operation on user objects in the Templafy application.

3. Update the Attribute Mappings according to the SAML2 application mappings already configured.

   Important Custom claims should be configured as shown below: External name: customClaim4 External namespace: urn:ietf:params:scim:schemas:extension:templafy:2.0:User

Assign Users or User Groups to the SCIM application

1. Navigate to the Assignments tab.
2. Click Assign.
3. Search for the Users or User Groups and assign them to the application.
4. The user(s) will be than immediately and automatically synced to Templafy.