Cloud Radius Integration with Entra ID SCIM

what is scim? scim stands for s ystem for c ross domain i dentity m anagement it consists of a rest/json based protocol to simplify user identity management between identity providers (idp) and cloud based service providers (sp) an idp that supports scim (azure, okta, ) acts as a scim client and sends identity information and changes to the sp (nile) acting as a scim server requirements entra id user with application admin role to create enterprise applications administrator access to the nile control center (nile portal) configuration the integration of cloud radius with entra id scim consists of the following tasks generate a scim api key on the nile control center idp page create an enterpise application in entra id and provision it for scim assign users/groups to the application enable the provisioning to trigger the entra id sync nile scim api key login to the nile control center https //www nile global cloud with administrator rights navigate to global settings > identity to view the idp page click on add a new provider to create a new idp saml provider as per the nile idp integration documents note currently the scim configuration is available once an idp provider has been created under the scim configuration section, click the add scim key button to generate a scim key a json file (scim api key xxxxxxxxxxxxxx json) containing the scim api key is created and the admin is prompted to save it on his/her local computer entra id scim provisioning sign in to microsoft entra id portal https //entra microsoft com in the left pane, expand the entra id menu option, and click " enterprise apps " the admin has the option of using an existing enterprise saml app with nile, if configured, or create a new application by clicking on + new application above the application list if creating a new app, click on + create your own application in the app gallery enter a name and click the create button from here thereafter, the same steps are followed when using an existing saml app under the manage menu, click provisioning follow the new version of the provisioning user experience and start by clicking the connect your application button enter the scim url and scim api key collected earlier from the nile control center, then click the test connection button for validation, before clicking on the create button click the overview (preview) link on top of the page and get started menu option to continue the provisioning steps alternatively the left pane menu options could also be leveraged to navigate through the provisioning options click add scoping filters to review and validate that groups and users provisioning are enabled click the users and groups option in the left pane menu to access the page where groups could be assigned click +add user/group to assign the desired groups, and click assign to complete an illustration is presented below click the provisioning option in the left pane menu and validate the following provisioning mode is automatic under settings , the scope is to sync only assinged users and groups the last step is to start the provisioning by navigating to the overview (preview) page, and clicking start provisioning, then clicking yes to the prompt the current cycle status provides a provisioing update