Learn how to set up user provisioning to efficiently manage employee accounts through an identity provider (IdP).
Requirements
- SAML authentication (single sign-on) must be configured.
- Only Managed Accounts created or updated after January 16, 2023 are eligible.
- Only admins can set up and manage user provisioning.
IdPs that can be configured with user provisioning
The following IdPs can be configured with Nulab Pass at this time:
Items that can be synchronized from the IdP
With user provisioning, the following account information from your IdP is synced with your organization:
- Username
- Language
- Time zone
- Role
- Account status (active/inactive)
Set up user provisioning
1. Enable user provisioning
- Go to Organization Settings > Organization > User Provisioning.
- Select Manage.
- Select Enable.
- Select Save.
2. Issue a token
Before issuing a token, note that a token-issuer account:
- Can’t be deleted
- Can’t be suspended
- Can’t have permissions changed
To take these actions on a token-issuer account, another admin first needs to reissue the token reconfigure the IdP.
To issue a token:
- Select Issue Token on the user provisioning screen.
- Once the token is issued, copy and save the SCIM URL and SCIM token.
Good to know
The issued token is only shown once. If you lose it, delete the old token and issue a new one.