1. Clumio
  2. Knowledge Base
  3. Administration and Security
  4. Authentication and Access

Articles in this section

See more

Configuring SCIM User Provisioning with Okta

Hirdesh Ahuja
  • Updated

The Clumio service can integrate with Okta for SCIM Provisioning. Please follow the steps below to configure SCIM Provisioning with Okta. 

 

Supported features

  • Push users
  • Update user attributes
  • Deactivate users
  • Push Groups

Currently, Clumio does not support the following Okta provisioning features:

  • Remove users

  • Sync password

  • Enhanced group push

Prerequisites

Configure SCIM provisioning

In Okta

  1. Open the Okta Admin console.
  2. Go to Applications > Clumio

  3. In the Sign On tab, ensure that Application username format is set to Email

  4. Navigate to the Provisioning tab, and click on Configure API Integration
  5. Check the Enable API Integration checkbox.  
  6. Get the SCIM Connector Base URL, and the SCIM API token from Clumio (See step 5), and copy it here.
    Screenshot 2023-08-22 at 11.02.43 AM.png
  7. Under Provisioning to App settings, enable Create Users, Update User Attributes, and Deactivate Users
    Screenshot 2023-08-16 at 3.12.52 PM.png

  8. Next, you need to push groups. Navigate to the Push Groups tab. 
  9. Push the groups - including for the user currently logged in to Clumio. There are two ways of selecting groups, either by name or by using a rule. 
    Screenshot 2023-07-20 at 11.01.02 AM.png
    Screenshot 2023-07-20 at 11.02.40 AM.png
    Screenshot 2023-07-20 at 11.05.01 AM.png

  10. Ensure the current user’s sync was successful in the previous step. 
    Screenshot 2023-07-20 at 11.07.08 AM.png

 

In Clumio

  1. Log on to Clumio.
  2. Navigate to Settings > Access Management > Auto user provisioning

    Screen_Shot_2022-09-12_at_2.12.50_PM.png

  3. Click Get Started and type a rule name, select the conditions to apply the rule, give the group a name, select the Super Admin Role, and assign that role to an OU.
    Screen_Shot_2022-09-12_at_10.51.50_AM.png

  4. Click Configure SCIM
  5. Copy the SCIM base URL, and generate and download the SCIM API token. These will be needed for the IdP side setup. Once done, click Close
    Screenshot 2023-07-19 at 5.22.07 PM.png
  6. Now click Provisioning method (optional), and toggle on SCIM Provisioning.
  7. Ensure that the logged-in user is a part of the group that is assigned the Super Admin role, and groups have been pushed from Okta (see step 14 above).
  8. Click Enable Auto User Provisioning.
    Screen_Shot_2022-09-12_at_11.46.16_AM.png
  9. You can now create additional rules per your requirements by clicking Create Auto User Provisioning Rule.

Once Auto User Provisioning is enabled, all users are evaluated per the rules you created and any changes to users within Okta will automatically reflect within Clumio.  

 

Troubleshooting

Please contact support@clumio.com in case of any clarifications or questions.

 

 

Related articles

Comments

0 comments

Please sign in to leave a comment.