Microsoft Azure: Automate your starters and leavers

To finalise the process, please log into your Perkbox Admin Portal

Aaron Strickland avatar
Written by Aaron Strickland
Updated over a week ago

1. Create Azure AD SCIM Application

From your Enterprise Application dashboard, select "New Application".

Select "Create your own application" and continue.

Give your application a descriptive name such as and select the "Integrate any other application you don't find in the gallery (Non-gallery)" option, then click "Create".

2. Configure the Azure AD SCIM Admin Credentials

Note: It is recommended you log into your Perkbox Admin Portal to finalise the process. Beyond this point, the endpoint and bearer token you will need will be found there as opposed to this page.

Select "Provisioning" from the "Manage" section found in the navigation menu of the SCIM application.

Click the "Get Started" button.

Select the "Automatic" Provisioning Mode from the dropdown menu.

Copy and paste the endpoint into the "Tenant URL" field.

Note: The endpoint is provided once you start setting it up on Perkbox's Admin Portal.

3. Set up and enable attribute mapping

Expand the "Mappings" section.

Make sure the group and user attribute mappings are enabled, and are mapping the correct fields. The default mapping should work, but your specific Azure setup may require you to add a custom mapping.

Make sure that you are mapping "objectId" to "externalId" within the Attribute Mapping section.

4. Assign People & Groups to Azure AD SCIM Application

In order for your users and groups to be synced you will need to assign them to your Azure AD SCIM Application. Select "Users and groups" from the "Manage" section of the navigation menu.

Select "Add user/group" from the top menu.

Select "None selected" under the "Users and Groups". In the menu, select the users and groups that you want to add to the SCIM application, and click "Select".

Select "Assign" to add the selected users and groups to your SCIM application.

Note: You may need a premium subscription with Microsoft Azure to make use of group provisioning, or else you will only be able to select individual users to access the app from Azure.

Confirm the "Provisioning Status" is set to "On" and that the "Scope" is set to "Sync only assigned users and groups".

5. Confirmation

Once everything has been done, your starters and leavers will be automated onto Perkbox.

All adding or removal moving forward will happen directly from Microsoft Azure.

Did this answer your question?