Microsoft Entra ID SCIM Provisioning Integration

This integration is currently available only to customers participating in a private preview. If you'd like to participate to be among the first to try this feature, ask our support or account team for details.

The integration between Microsoft Entra ID and the Delinea Platform provides SCIM 2.0-based user and group provisioning using the Delinea SCIM Cloud Connector. The integration automatically provision users created in Microsoft Entra ID directly into the Delinea Platform, eliminating manual user creation and ensuring identity consistency. For more information about SCIM provisioning in Microsoft Entra ID, see the Microsoft Entra ID documentation. For more information about Delinea SCIM Cloud Connector, see Delinea SCIM Connector.

The Microsoft Entra SCIM implementation is built on top of the Microsoft Entra user provisioning service, which is designed to constantly keep users in sync between Microsoft Entra ID and the target application, and implements a very specific set of standard operations. For more information, see Tutorial: Develop and plan provisioning for a SCIM endpoint in Microsoft Entra ID in the Microsoft Entra ID documentation.

Supported Use Cases

  • User Account Management

    • Provision new user accounts automatically or on demand

    • Update existing user accounts

    • Deprovision (disable and delete) user accounts

  • User Group Management

    • Provision groups automatically or on demand

    • Manage user groups (add, update, and delete users from a group)

    • Deprovision (delete) groups

Prerequisites

To use Microsoft Entra ID SCIM Provisioning with the Delinea Platform, make sure that the following requirements are met.

Delinea Platform

  • The Delinea Platform is properly provisioned and configured in your environment.

  • You have admin permissions for logging in to the Delinea Platform.

  • You have the required view permissions for the users, groups, and permissions you want to synchronize.

  • Your identity provider has been configured. For more information about configuring identity providers in the Delinea Platform, see Identity Providers.

Microsoft Entra ID

  • A Microsoft Entra ID tenant with at least P1 licensing (required for enterprise app provisioning)ю

  • At least the Application Administrator or Cloud Application Administrator role in Microsoft Entra ID.